Politico: US Treasury’s China hack came through vendor

US Treasury and other law enforcement officials told lawmakers Wednesday that Chinese hackers gained access to more than 3,000 unclassified agency files as part of a cybersecurity breach, according to a person in the room for a classified briefing the agency gave House members on Capitol Hill, reported Politico. 

Officials told lawmakers that the hackers accessed a small number of unclassified files belonging to top officials including secretary Janet Yellen, deputy secretary Wally Adeyemo, and acting under secretary Brad Smith, said the person, who was granted anonymity to discuss unclassified portions of a closed-door meeting. Other targets of the hack included the Committee of Foreign Investment in the United States and the Office of Foreign Assets Control.

A Chinese state-sponsored hacker gained access to the information between Sept. 30 and Nov. 18 via a third-party vendor the department uses, BeyondTrust. The firm informed Treasury on Dec. 8 that hackers gained access to its data via a vulnerability in a third-party product that it uses. The hackers accessed 419 Treasury computers and at least 3,029 files, officials told lawmakers. An analysis of Treasury’s logs has found that only unclassified information was compromised, officials told lawmakers.

Read the full article

Related Posts

Previous Post
CIRO proposes close-out requirements for short selling
Next Post
FSB releases analytical framework and toolkit for climate risk

Fill out this field
Fill out this field
Please enter a valid email address.

X

Reset password

Create an account