Jump to content
A Note on Topic Titles – Be Clear & Descriptive!

China hacks the US Treasury!

NAME REMOVED
 Share

Recommended Posts

NAME REMOVED Grand Master

NAME REMOVED

Posted
Posted (edited)

US Treasury says Chinese hackers stole documents in 'major incident'

WASHINGTON, Dec 30 (Reuters) - Chinese state-sponsored hackers breached the U.S. Treasury Department's computer security guardrails this month and stole documents in what Treasury called a "major incident," according to a letter to lawmakers, opens new tab that Treasury officials provided to Reuters on Monday.
The hackers compromised third-party cybersecurity service provider BeyondTrust and were able to access unclassified documents, the letter said.
 
According to the letter, hackers "gained access to a key used by the vendor to secure a cloud-based service used to remotely provide technical support for Treasury Departmental Offices (DO) end users. With access to the stolen key, the threat actor was able to override the service’s security, remotely access certain Treasury DO user workstations, and access certain unclassified documents maintained by those users."
 
"Based on available indicators, the incident has been attributed to a China state-sponsored Advanced Persistent Threat (APT) actor," the letter said.
The Treasury Department said it was alerted to the breach by BeyondTrust on Dec. 8 and that it was working with the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI to assess the hack's impact.
 
"China has always opposed all forms of hacker attacks," Mao Ning, a spokesperson for China's foreign ministry, told a regular news conference on Tuesday.
A spokesperson for the Chinese Embassy in Washington rejected any responsibility for the hack, saying that Beijing "firmly opposes the U.S.'s smear attacks against China without any factual basis."
 
A spokesperson for BeyondTrust, based in Johns Creek, Georgia, told Reuters in an email that the company "previously identified and took measures to address a security incident in early December 2024" involving its remote support product. BeyondTrust "notified the limited number of customers who were involved," and law enforcement was notified, the spokesperson said. "BeyondTrust has been supporting the investigative efforts."
 
The spokesperson referred to a statement posted on the company's website, opens new tab on Dec. 8 sharing some details from the investigation, including that a digital key had been compromised in the incident and that an investigation was under way. That statement was last updated on Dec. 18.
 
Tom Hegel, a threat researcher at cybersecurity company SentinelOne (S.N), opens new tab, said the reported security incident "fits a well-documented pattern of operations by PRC-linked groups, with a particular focus on abusing trusted third-party services - a method that has become increasingly prominent in recent years," he said, using an acronym for the People's Republic of China."
 
-----
 
The Chinese are at it again!
Edited by DUI_Offender
ironstone Grand Master

ironstone

Posted
Posted

The Biden/Harris administration will tolerate this, but Trump will not.

"Socialism in general has a record of failure so blatant that only an intellectual could ignore or evade it." Thomas Sowell

WestCanMan Grand Master

WestCanMan

Posted
Posted

It was the easiest hack of all time:

Username: Joe Biden

Password: 123uhhh...

  • Haha 1

If CNN gave an infinite number of monkeys an infinite number of typewriters, leftists would believe everything they typed.

If you missed something on the Cultist Narrative Network, don't worry, the dolt horde here will make sure everyone hears it. 

Ex-Canadian since April 2025

Deluge Grand Master

Deluge

Posted
Posted
16 hours ago, DUI_Offender said:

US Treasury says Chinese hackers stole documents in 'major incident'

WASHINGTON, Dec 30 (Reuters) - Chinese state-sponsored hackers breached the U.S. Treasury Department's computer security guardrails this month and stole documents in what Treasury called a "major incident," according to a letter to lawmakers, opens new tab that Treasury officials provided to Reuters on Monday.
The hackers compromised third-party cybersecurity service provider BeyondTrust and were able to access unclassified documents, the letter said.
 
According to the letter, hackers "gained access to a key used by the vendor to secure a cloud-based service used to remotely provide technical support for Treasury Departmental Offices (DO) end users. With access to the stolen key, the threat actor was able to override the service’s security, remotely access certain Treasury DO user workstations, and access certain unclassified documents maintained by those users."
 
"Based on available indicators, the incident has been attributed to a China state-sponsored Advanced Persistent Threat (APT) actor," the letter said.
The Treasury Department said it was alerted to the breach by BeyondTrust on Dec. 8 and that it was working with the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI to assess the hack's impact.
 
"China has always opposed all forms of hacker attacks," Mao Ning, a spokesperson for China's foreign ministry, told a regular news conference on Tuesday.
A spokesperson for the Chinese Embassy in Washington rejected any responsibility for the hack, saying that Beijing "firmly opposes the U.S.'s smear attacks against China without any factual basis."
 
A spokesperson for BeyondTrust, based in Johns Creek, Georgia, told Reuters in an email that the company "previously identified and took measures to address a security incident in early December 2024" involving its remote support product. BeyondTrust "notified the limited number of customers who were involved," and law enforcement was notified, the spokesperson said. "BeyondTrust has been supporting the investigative efforts."
 
The spokesperson referred to a statement posted on the company's website, opens new tab on Dec. 8 sharing some details from the investigation, including that a digital key had been compromised in the incident and that an investigation was under way. That statement was last updated on Dec. 18.
 
Tom Hegel, a threat researcher at cybersecurity company SentinelOne (S.N), opens new tab, said the reported security incident "fits a well-documented pattern of operations by PRC-linked groups, with a particular focus on abusing trusted third-party services - a method that has become increasingly prominent in recent years," he said, using an acronym for the People's Republic of China."
 
-----
 
The Chinese are at it again!

Only on the hair sniffer's watch....

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Tell a friend

    Love Repolitics.com - Political Discussion Forums? Tell a friend!

  • Member Statistics

    • Total Members
      10,906
    • Most Online
      1,403
    Henry Blackstone
    Newest Member
    Henry Blackstone
    Joined

  • Recent Achievements

    • Week One Done
      Doowangle
      Doowangle earned a badge
      Week One Done
    • One Month Later
      Doowangle
      Doowangle earned a badge
      One Month Later
    • Proficient
      Barquentine
      Barquentine went up a rank
      Proficient
    • Week One Done
      Dave L
      Dave L earned a badge
      Week One Done
    • Conversation Starter
      Ana Silva
      Ana Silva earned a badge
      Conversation Starter

  • Recently Browsing

    • No registered users viewing this page.
×
×
  • Create New...