Home » News » Treasury says Chinese hackers remotely accessed documents in ‘major’ cyber incident

Treasury says Chinese hackers remotely accessed documents in ‘major’ cyber incident

Treasury says Chinese hackers remotely accessed documents in 'major' cyber incident
May Be Interested In:OHL Roundup: Allard scores winner, Greyhounds edge Wolves 3-2


American flags are displayed with Chinese flags on top of a trishaw on Sept. 16, 2018, in Beijing.

Andy Wong/AP


hide caption

toggle caption

Andy Wong/AP

WASHINGTON — Chinese hackers remotely accessed several U.S. Treasury Department workstations and unclassified documents after compromising a third-party software service provider, the agency said Monday.

A smartphone's screen shows messaging apps including WhatsApp, Signal and Telegram.

The department did not provide details on how many workstations had been accessed or what sort of documents the hackers may have obtained, but it said in a letter to lawmakers revealing the breach that “at this time there is no evidence indicating the threat actor has continued access to Treasury information.” It said the hack was being investigated as a “major cybersecurity incident.”

“Treasury takes very seriously all threats against our systems, and the data it holds,” a department spokesperson said in a separate statement. “Over the last four years, Treasury has significantly bolstered its cyber defense, and we will continue to work with both private and public sector partners to protect our financial system from threat actors.”

The revelation comes as U.S. officials are continuing to grapple with the fallout of a massive Chinese cyberespionage campaign known as Salt Typhoon that gave officials in Beijing access to private texts and phone conversations of an unknown number of Americans. A top White House official said Friday that the number of telecommunications companies confirmed to have been affected by the hack has now risen to nine.

The Treasury Department said it learned of the problem on Dec. 8, when a third-party software service provider, BeyondTrust, flagged that hackers had stolen a key “used by the vendor to secure a cloud-based service used to remotely provide technical support” to workers. That key helped the hackers override the service’s security and gain remote access to several employee workstations.

Chinese Hackers Charged In Alleged Cyber-Theft Of 145 Million Americans' Data

The compromised service has since been taken offline, and there’s no evidence that the hackers still have access to department information, Aditi Hardikar, an assistant Treasury secretary, said in the letter Monday to leaders of the Senate Banking Committee.

The department said it was working with the FBI and the Cybersecurity and Infrastructure Security Agency and others to investigate the impact of the hack, and that the hack had been attributed to Chinese state-sponsored culprits. It did not elaborate.

share Share facebook pinterest whatsapp x print

Similar Content

Logitech Z407 and Creative Pebble Plus desktop speakers against a TechRadar background
Logitech Z407 vs Creative Pebble Plus: Neither of these budget speakers sound cheap, but which go best with your setup? February 28, 2025
The Largest Wildfire in World History Burned 15% of a Continent
The Largest Wildfire in World History Burned 15% of a Continent March 6, 2025
Normani Is Engaged to NFL Star DK Metcalf - E! Online
Normani Is Engaged to NFL Star DK Metcalf – E! Online March 14, 2025
Christina Hall, Rachel Bilson and More Stars Who’ve Shared Their Co-Parenting Journeys - E! Online
Christina Hall, Rachel Bilson and More Stars Who’ve Shared Their Co-Parenting Journeys – E! Online December 26, 2024
European Commission Criticised for Weakly Regulating Big Tech
European Commission Criticised for Weakly Regulating Big Tech January 21, 2025
The Surprising Source of Next-Gen Antibiotics: Oyster Blood
The Surprising Source of Next-Gen Antibiotics: Oyster Blood February 21, 2025
Revealing the Facts: Today's Critical Headlines | © 2024 | Daily News