Chinese state-sponsored hackers infiltrate US Treasury in major cyberattack, officials tell Congress

By: Shawn
The US Treasury Department informed legislators on Monday that a Chinese state-sponsored actor infiltrated Treasury workstations in what authorities are calling a "major incident."

The Treasury Department says China-backed hackers breached its computer systems.
Michael A. McCoy/The Washington Post

In a letter acquired by CNN, a Treasury official said that on December 8, a third-party software service provider told them that a threat actor had utilized a stolen key to remotely access some Treasury workstations and unclassified data.

"Based on available indicators, the incident has been attributed to a Chinese state-sponsored Advanced Persistent Threat (APT) actor," Aditi Hardikar, assistant secretary for management at the US Treasury, wrote in the letter.

A Treasury spokeswoman told CNN that the hacked service has been taken offline, and authorities are collaborating with law enforcement and the Cybersecurity and Infrastructure Security Agency (CISA).

"There is no evidence that the threat actor has continued access to Treasury systems or information," a Treasury spokeswoman said.

A senior committee source told CNN that Treasury officials want to provide a secret briefing on the breach next week for House Financial Services Committee personnel. The specific timing of the briefing has not yet been determined.

According to the letter to Senate Banking Committee leadership, BeyondTrust, a third-party software service provider, reported that hackers got access to a key used by the vendor to protect a cloud-based service that Treasury utilizes for technical assistance.

"With access to the stolen key, the threat actor was able to override the service's security, remotely access certain Treasury [Departmental Office] user workstations, and access certain unclassified documents maintained by those users," the Treasury letter said.

It is unclear how many workstations were penetrated. However, the Treasury spokeswoman stated that "several" Treasury user workstations were accessed.

According to Hardikar's letter, breaches attributable to advanced persistent threat actors are deemed a "major cybersecurity incident." Treasury authorities must offer an update in a 30-day supplementary report.

It's unclear if Treasury has completely assessed the harm caused by the leak.

Treasury has been working with CISA, the FBI, US intelligence agencies, and third-party forensic investigators to "fully characterize the incident and determine its overall impact," according to Hardikar's letter.

"CISA was engaged immediately upon Treasury’s knowledge of the attack, and the remaining governing bodies were contacted as soon as the scope of the attack became evident," the letter said. FA

Comments

Post a Comment

TRENDING!

Trump says New Orleans attack confirms his 'rhetoric' on crime

Image
President-elect Donald Trump claimed Wednesday that a deadly attack on New Year's Eve revelers in New Orleans, Louisiana, exemplified his grim assessment of crime in America, promising to "fully support the City of New Orleans as they investigate and recover from this act of pure evil!" U.S. President-elect Donald Trump. Eva Marie Uzcategui/Getty Images "When I said that the criminals coming in are far worse than the criminals we have in our country, that statement was constantly refuted by Democrats and the Fake News Media, but it turned out to be true," Trump said on his Twitter account. "Our hearts are with all of the innocent victims and their loved ones." According to President Joe Biden's statement, the FBI is leading the federal investigation and is looking at the event as a terrorist act. "I have directed my team to ensure every resource is available as federal, state and local law enforcement work assiduously to get to the...
Read more

Cybertruck explosion outside Trump Tower in Las Vegas leaves one dead and seven injured

Image
A Tesla cybertruck exploded outside of President-elect Donald Trump's hotel in Las Vegas, killing one person and injuring seven others. The explosion occurred at 8:40 a.m. on Wednesday in the valet area outside the lobby of the Trump International Hotel, located at Las Vegas Boulevard and Sammy Davis Jr. Drive. Cybertruck explosion outside Vegas ' Trump hotel ' leaves one dead and seven injured. Jeffrey Miller/Reuters At a press conference, Las Vegas County Sheriff Kevin McMahill said that one individual died inside the car and that efforts were underway to recover the corpse. "There is one deceased individual in the Cybertruck, and I don't know whether it's a male or female," McMahill said. "At this point, we are examining a number of leads, and I am not ready to share any of that information with you just now. We can. I can tell you that seven people are currently injured as a result of the explosion. He added that the injuries were a...
Read more

New Orleans attack latest: Death toll hits 15 as FBI looks for others who helped suspected terrorist

Image
The man who rammed a truck into a crowd in New Orleans, killing at least 15 people and injuring scores more, was carrying an ISIS flag, according to the FBI. The FBI has identified the suspect who was shot and killed by police as Shamsud-Din Jabbar, 42. New Orleans car rammed into huge crowd killing 15. The Associated Press The incident occurred at 3:15 a.m. on Wednesday on Bourbon Street, in the early hours of New Year's Day, when Jabbar reportedly drove into a crowd after evading police barricades around the French Quarter. The suspect engaged in "very intentional behavior," according to authorities. Two cops were shot in a gunfight with the suspect and are currently in stable condition. The FBI is investigating the incident as a potential "act of terrorism." According to New Orleans police, the driver intended to "run over as many people as he possibly could." Officials do not believe Jabbar acted alone and are probing if he had accompl...
Read more

New Orleans mass killing: Everything we know about the 'horrific incident'

Image
A man drove into a huge gathering in New Orleans in the early hours of New Year's Day, killing ten people and injuring at least 35, officials have said. Emergency services survey the scene after a vehicle drove into a crowd on New Orleans ' Canal and Bourbon Street on New Year 's Day. Gerald Herbert/AP This is all we know so far. When did the incident happen? On New Year's Day, around 0315, a man drove a pickup truck at great speed into a huge crowd on Bourbon Street in New Orleans' French Quarter. Police described the incident as "very intentional," and stated that the perpetrator was "hell-bent on creating the carnage and the damage that he did." "This man was attempting to run over as many people as possible," said New Orleans Police Chief Anne Kirkpatrick. The driver opened fire on cops from his car, wounding two. Authorities said they are in stable condition. In a subsequent update, the FBI verified the driver'...
Read more

Wildfire erupts in Hollywood Hills: Evacuation orders, firefighter response and more

Image
Wednesday night saw the start of another fire in Los Angeles, putting the famous Hollywood Bowl in jeopardy. Flames broke out in Runyon Canyon in the Hollywood Hills around 5:30 p.m., earning the name Sunset Fire. The fire was expanding near Hollywood Boulevard and the Walk of Fame. The Magic Castle, a private magicians' club, is nearby, as are the Comedy Store, the TCL Chinese Theatre, the El Capitan Theatre, Madame Tussauds Wax Museum, Ovation Hollywood, the Hollywood Roosevelt Hotel, and the Bowl. ' The Hollywood Bowl. ' Allen J. Schaben/Los Angeles Times via Getty Images "Due to the Sunset Fire, we have received evacuation orders and all Hollywood Bowl staff have safely evacuated the premises," the Hollywood Bowl wrote on X (formerly Twitter) Wednesday evening. "We extend our deepest gratitude to the firefighters who are working tirelessly to protect our community." Just before midnight, the Los Angeles Fire Department shared in an update...
Read more

Justin Trudeau resigns after nine years in office as Liberals force him out

Image
Prime Minister Justin Trudeau is resigning after more than nine years in office, citing low popularity ratings and a revolt within his political party.  Trudeau, 53, the longest-serving leader of any Group of Seven country, announced Monday that he will stand aside as leader of the governing Liberal Party. He will stay prime minister until a new leader is chosen, at which time parliament will be halted until March 24.  Trudeau , 53 , who has been the leader of the governing Liberal Party for the longest , announced on Monday that he intends to resign. Kamara Morozuk/Bloomberg via Getty Images The winner of the Liberal leadership contest will become Canada's 24th prime minister and will have to immediately prepare for an election, which the Conservative Party is widely expected to win, according to public opinion surveys.  A nationwide vote is due in October, but it is likely to happen sooner. The three largest opposition parties in parliament have said tha...
Read more

New FC Barcelona signing arrives this week — who is he? and where is he from?

Image
FC Barcelona's new signing is set to arrive in the Catalan city in the coming days, according to outlets such as SPORT, which cited unnamed sources. According to The Athletic, citing unidentified sources, the athlete will join his new team this week after a 10-month wait. A new signing made by FC Barcelona is believed to be scheduled to arrive in the Catalan capital in the coming days. UEFA via Getty Images It is public knowledge that Ibrahim Diarra's purchase from CPF Africa Foot has already been completed. When Barca's last financial report was released a few weeks ago, it said that $1.6 million (€1.5 million) and $200,000 (€190,000) will be paid to Africa Foot and Diarra under the outstanding obligations section. Barcelona's acquisition of Diarra marks the start of a new transfer plan. It entails the Blaugrana going directly to Africa to find potential, rather than waiting for another European opponent to do so and then signing established players for...
Read more

Trump asks Supreme Court to pause potential US TikTok ban

Image
Donald Trump has urged the United States Supreme Court to postpone the enforcement of a statute that would expose TikTok to a nationwide ban on January 19 if its parent firm does not sell the platform. ' Donald Trump. ' Rebecca Noble/Getty Images The President-elect, in a friend-of-the-court brief filed on Friday, claims he can strike an agreement to balance the national security and First Amendment concerns raised by the disputed statute. Although he points out that he "takes no positions on the merits of the dispute," he asserts that he "alone possesses the consummate dealmaking expertise, the electoral mandate, and the political will to negotiate a resolution to save the platform while addressing the national security concerns expressed by the Government." ByteDance has 22 days left to sell its platform. If it fails not fulfill the deadline, web-hosting providers and mobile app shops will be prohibited from carrying the app, resulting in an ef...
Read more

Pep Guardiola agrees new Manchester City contract

Image
Pep Guardiola's glittering reign at Manchester City will stretch to a decade after the manager surprised the Premier League champions by committing to a new contract in principle. Pep Guardiola. Getty Images Guardiola is set to pen an extension to his deal which could run another two years until 2027, in a significant boost to City - who were facing the prospect of simultaneously losing both their all-conquering boss and sporting director, Txiki Begiristain. Mail Sport reported in the summer that Guardiola was expected to call time on his illustrious spell in charge at the end of this season, with a changing of the guard deemed highly likely by those close to him. It is understood that senior figures were cautiously discussing succession planning, while Guardiola was contacted by the FA regarding the England post in July. Guardiola's friends were left with the sense that he was seriously considering replacing Gareth Southgate. But the 53-year-old returned to pre-sea...
Read more

Fox News hosts Sean Hannity and Ainsley Earhardt are engaged

Image
Sean Hannity and Ainsley Earhardt, Fox News anchors, are planning to marry. The couple spent the holidays in Hannity's home state of Florida, where they got engaged over Christmas. "We are overjoyed and so thankful to our families for all of their love and support during this wonderful time in our lives," Hannity and Earhardt told Fox News. Sean Hannity and Ainsley Earhardt. Theo Wargo/Getty Images The couple bonded over their deep religion, so Hannity chose the church as the "perfect place" to propose to Earhardt. Soon after the engagement, they met with their minister. Hannity and Earhardt have supposedly been in a relationship since 2020. A source told People at the time that the couple had "been seeing each other very secretively for years," despite the pair's denial. "It's been an open secret that they have been seeing each other," the source added. "They're together all the time, but in private … for years,...
Read more