The Treasury Department has categorized this breach as a "major incident," indicating the severity of the situation. Initial investigations suggest that the attackers were able to exploit a key used by a third-party service provider, BeyondTrust, to gain remote access to Treasury systems. Following the detection of the hacking activity, BeyondTrust was taken offline.
While the department stated that no evidence indicates ongoing access to its systems post-discovery, the incident underscores a troubling trend of high-profile cyber intrusions attributed to China. This comes on the heels of other breaches, including a significant hack targeting telecom companies just last month that reportedly compromised sensitive phone record data.
China has swiftly rejected the allegations, labeling them "baseless" and accusing the US of disseminating false information. The Chinese foreign ministry emphasized its opposition to all forms of hacking and criticized the USA for using cybersecurity claims as a political weapon.
Officials have confirmed that the US Treasury was notified of the breach on December 8, following alerts from BeyondTrust. The Chinese embassy in Washington also denounced the accusations, insisting they stem from a smear campaign lacking credible evidence.
As the investigation continues, the Treasury Department has pledged to deliver a supplemental report to lawmakers in one month, which may reveal further details about the extent and implications of the attack. In the ongoing struggle for cybersecurity and national defense, the tensions between the US and China regarding cyber espionage show no signs of abating, with both nations poised to further engage in this high-stakes battleground.
While the department stated that no evidence indicates ongoing access to its systems post-discovery, the incident underscores a troubling trend of high-profile cyber intrusions attributed to China. This comes on the heels of other breaches, including a significant hack targeting telecom companies just last month that reportedly compromised sensitive phone record data.
China has swiftly rejected the allegations, labeling them "baseless" and accusing the US of disseminating false information. The Chinese foreign ministry emphasized its opposition to all forms of hacking and criticized the USA for using cybersecurity claims as a political weapon.
Officials have confirmed that the US Treasury was notified of the breach on December 8, following alerts from BeyondTrust. The Chinese embassy in Washington also denounced the accusations, insisting they stem from a smear campaign lacking credible evidence.
As the investigation continues, the Treasury Department has pledged to deliver a supplemental report to lawmakers in one month, which may reveal further details about the extent and implications of the attack. In the ongoing struggle for cybersecurity and national defense, the tensions between the US and China regarding cyber espionage show no signs of abating, with both nations poised to further engage in this high-stakes battleground.
