China Breached US Treasury Systems, Reports NYT
A report indicates that suspected state-sponsored Chinese hackers have breached the US Treasury Department's security, accessing unclassified documents. Read Full Article at RT.com
TroibNews 
The cybersecurity breach has been designated a “major incident,” with assessments from the intelligence community evaluating its implications.
Allegations have surfaced that state-sponsored Chinese hackers have gained access to the US Treasury Department, compromising unclassified documents and certain workstations utilized by government personnel, as detailed in a letter from the department to lawmakers on Monday.
The breach was first reported on December 8, when the Treasury Department was notified by BeyondTrust, a third-party software service provider. The hackers acquired a security key used by the vendor to protect a cloud-based service that offers remote technical support for Treasury Departmental Offices end users. This key allowed the intruders to bypass the service’s security measures, enabling remote access to specific workstations and unclassified documents stored on those systems.
“Based on available indicators, the incident has been attributed to a Chinese state-sponsored Advanced Persistent Threat actor,” the Treasury Department noted in a formal letter dated December 30.
In response, the department has classified this incident as a significant cybersecurity breach and has engaged with the FBI, the intelligence community, and additional investigators to determine the extent of the hack’s repercussions. The affected service has been taken offline, and there is currently no evidence suggesting that the hackers maintain access to Treasury information.
A Treasury Department spokesperson underscored the gravity of such threats and reaffirmed their dedication to collaborating with both private and public sector partners to safeguard the financial system, as reported by the New York Times. More in-depth information regarding the breach will be included in a supplemental report to Congress within 30 days.
This incident follows recent reports of another breach attributed to a different alleged Chinese hacking group called Salt Typhoon, which penetrated significant US telecommunications systems. The hackers accessed the phone calls and text messages of US officials, allegedly including those of President-elect Donald J. Trump and Vice President-elect JD Vance, in what has been labeled “the largest telecommunications hack in our nation’s history.”
The Salt Typhoon breach focused on the networks of prominent telecommunications companies like AT&T, Verizon, and Lumen. The hackers gained crucial insights into US surveillance operations, including an almost complete roster of phone numbers monitored by the Justice Department due to suspicions of criminal activity or espionage.
Beijing has routinely rejected hacking allegations from Washington. Earlier this month, the Chinese Foreign Ministry asserted that the US employs hacking accusations to disparage China and legitimize unilateral sanctions.
“We urge the US to stop using cybersecurity issues to smear and vilify China and to cease imposing illicit unilateral sanctions,” stated Chinese Foreign Ministry spokesperson Mao Ning.
Thomas Evans for TROIB News
Allegations have surfaced that state-sponsored Chinese hackers have gained access to the US Treasury Department, compromising unclassified documents and certain workstations utilized by government personnel, as detailed in a letter from the department to lawmakers on Monday.
The breach was first reported on December 8, when the Treasury Department was notified by BeyondTrust, a third-party software service provider. The hackers acquired a security key used by the vendor to protect a cloud-based service that offers remote technical support for Treasury Departmental Offices end users. This key allowed the intruders to bypass the service’s security measures, enabling remote access to specific workstations and unclassified documents stored on those systems.
“Based on available indicators, the incident has been attributed to a Chinese state-sponsored Advanced Persistent Threat actor,” the Treasury Department noted in a formal letter dated December 30.
In response, the department has classified this incident as a significant cybersecurity breach and has engaged with the FBI, the intelligence community, and additional investigators to determine the extent of the hack’s repercussions. The affected service has been taken offline, and there is currently no evidence suggesting that the hackers maintain access to Treasury information.
A Treasury Department spokesperson underscored the gravity of such threats and reaffirmed their dedication to collaborating with both private and public sector partners to safeguard the financial system, as reported by the New York Times. More in-depth information regarding the breach will be included in a supplemental report to Congress within 30 days.
This incident follows recent reports of another breach attributed to a different alleged Chinese hacking group called Salt Typhoon, which penetrated significant US telecommunications systems. The hackers accessed the phone calls and text messages of US officials, allegedly including those of President-elect Donald J. Trump and Vice President-elect JD Vance, in what has been labeled “the largest telecommunications hack in our nation’s history.”
The Salt Typhoon breach focused on the networks of prominent telecommunications companies like AT&T, Verizon, and Lumen. The hackers gained crucial insights into US surveillance operations, including an almost complete roster of phone numbers monitored by the Justice Department due to suspicions of criminal activity or espionage.
Beijing has routinely rejected hacking allegations from Washington. Earlier this month, the Chinese Foreign Ministry asserted that the US employs hacking accusations to disparage China and legitimize unilateral sanctions.
“We urge the US to stop using cybersecurity issues to smear and vilify China and to cease imposing illicit unilateral sanctions,” stated Chinese Foreign Ministry spokesperson Mao Ning.
Thomas Evans for TROIB News
