In a significant cybersecurity breach, Chinese state-sponsored hackers have infiltrated the U.S. Treasury Department, accessing thousands of files, including those on Treasury Secretary Janet Yellen’s computer. This breach, which occurred between September 30 and November 18, 2024, has raised serious concerns about national security and the integrity of sensitive government data.
The hackers exploited vulnerabilities in the networks of BeyondTrust Corp., a software contractor for the Treasury Department. This allowed them to infiltrate the department’s systems and access unclassified files on the computers of top officials, including Deputy Secretary Wally Adeyemo and Acting Under Secretary Brad Smith. The breach was discovered on December 2, 2024, and BeyondTrust notified the Treasury on December 8, 2024.
The attackers accessed over 3,000 files on unclassified personal devices and more than 400 laptop and desktop machines. Among the compromised data were usernames, passwords, and “law enforcement sensitive” information related to investigations by the Committee on Foreign Investment in the United States. The hackers appeared to focus on the Treasury’s role in sanctions, intelligence, and international affairs, although they did not penetrate the department’s email or classified systems.
Treasury officials briefed congressional aides and lawmakers about the hack, emphasizing the heightened threat environment for online attacks. The breach has been described as a “major cybersecurity incident,” highlighting the ongoing challenges in protecting government data from sophisticated cyber threats.
Sources:
https://finance.yahoo.com/news/chinese-hackers-accessed-yellens-computer-230339179.html
https://www.yahoo.com/news/chinese-hackers-accessed-thousands-treasury-003919627.html
https://en.wikipedia.org/wiki/2024_United_States_Department_of_the_Treasury_hack
162 views