Tue Dec 31 04:15:00 UTC 2024: ## US Treasury Confirms Chinese State-Sponsored Cyberattack

**Washington D.C.** – The US Treasury Department revealed Monday that a state-sponsored Chinese actor was responsible for a recent cyber breach affecting its systems. The breach, which occurred earlier this month, involved the compromise of a third-party cybersecurity service provider, BeyondTrust, granting the attackers remote access to Treasury workstations and some unclassified documents.

The Treasury Department immediately contacted the Cybersecurity and Infrastructure Security Agency (CISA) and law enforcement partners upon discovering the intrusion, which was reported by BeyondTrust. The compromised BeyondTrust service has since been taken offline, and the Treasury Department asserts there is no evidence of continued access to its systems.

While the Treasury Department’s letter to the Senate Banking Committee attributes the attack to a Chinese state-sponsored Advanced Persistent Threat (APT) actor, specifics regarding the compromised data remain undisclosed. A supplemental report with further details is promised at a later date.

This incident adds to a growing list of alleged Chinese state-sponsored cyberattacks targeting US government agencies and businesses. The US has repeatedly voiced concerns over such activity, citing incidents like the neutralization of a global cyber-attack network in September and the dismantling of the Volt Typhoon hacking group in February, both allegedly linked to the Chinese government. These attacks targeted a wide range of entities, including critical infrastructure and government agencies like the State Department. China consistently denies these accusations. The Treasury Department stressed its commitment to safeguarding US financial systems from future threats.

Read More