Chinese-sponsored hackers accessed Treasury documents in 'major incident'

Chinese-sponsored hackers accessed Treasury documents in 'major incident'

Briefly

The compromised BeyondTrust service has been taken offline and there is no evidence indicating the threat actor has continued access to Treasury systems or information.

Nextgov.comhttps://www.nextgov.com/cybersecurity/2024/12/chinese-sponsored-hackers-accessed-treasury-documents-major-incident/401899/

Treasury takes very seriously all threats against our systems, and the data it holds. Over the last four years, Treasury has significantly bolstered its cyber defense.

Nextgov.comhttps://www.nextgov.com/cybersecurity/2024/12/chinese-sponsored-hackers-accessed-treasury-documents-major-incident/401899/

According to available indicators, the incident has been attributed to a China state-sponsored Advanced Persistent Threat (APT) actor.

Nextgov.comhttps://www.nextgov.com/cybersecurity/2024/12/chinese-sponsored-hackers-accessed-treasury-documents-major-incident/401899/

APTs are a moniker used in the cybersecurity community to denote hacking collectives that operate with advanced technical capabilities, persistent attack strategies and often with the financial backing of nation-states.

Nextgov.comhttps://www.nextgov.com/cybersecurity/2024/12/chinese-sponsored-hackers-accessed-treasury-documents-major-incident/401899/