The breach, occurring in early December, involved a remote technical support service named BeyondTrust. This provider has since been deactivated as a precaution. According to reports, the hacking perpetrated by what has been characterized as a China-based Advanced Persistent Threat (APT) actor allowed unauthorized access to certain workstations and unclassified files belonging to Treasury employees. Although the specifics of the compromised files remain undisclosed, Treasury officials assert that they are collaborating with the FBI and cybersecurity agencies to evaluate the extent of the breach's impact.
The Treasury Department was alerted to the hack on December 8. Following this notification, immediate steps were taken to inform law enforcement. In their communication to lawmakers, officials emphasized their commitment to safeguarding systems and data, highlighting that intrusions classified as APT incidents fall into the category of major cybersecurity threats. Despite past accusations of espionage against China, the country has consistently denied such claims, fueling ongoing tensions between the two nations. Further updates on the situation are anticipated as investigations continue.
The Treasury Department was alerted to the hack on December 8. Following this notification, immediate steps were taken to inform law enforcement. In their communication to lawmakers, officials emphasized their commitment to safeguarding systems and data, highlighting that intrusions classified as APT incidents fall into the category of major cybersecurity threats. Despite past accusations of espionage against China, the country has consistently denied such claims, fueling ongoing tensions between the two nations. Further updates on the situation are anticipated as investigations continue.
