China-linked attack on US Treasury Department reportedly targeted its sanctions office

The US Treasury Department told lawmakers in a letter back in December that its documents and workstations were accessed by an external party in a security breach. It described the attack as "a major cybersecurity incident" and attributed it to a "China state-sponsored Advanced Persistent Threat actor." Now, The Washington Post has reported that the bad actors infiltrated a "highly sensitive office" within the Treasury in charge of deliberating and administering US government sanctions. 

As The Post explains, the Office of Foreign Assets Control (OFAC) is in possession of some important information that could be very useful to another country's government. While the hackers were only able to steal unclassified data, they could still have gotten their hands on the identities of potential sanction targets. They could also have stolen pieces of evidence that the agency had collected as part of its investigation on entities that the government is thinking of sanctioning. Overall, the attackers could have gotten enough information to give them the knowledge of how the US develops sanctions against foreign entities. 

In addition to OFAC, the Office of the Treasury Secretary and the Office of Financial Research were also affected by the breach. The attackers infiltrated the Treasury's systems by gaining access to a key used by BeyondTrust, a cloud-based service that provides the department with technical support. 

The US government has attributed numerous cyberattacks on its agencies and American companies to China state-sponsored actors over the years. Just last year, the FBI blamed "PRC-affiliated actors" for a massive hack on US telecom companies. The actors, a group known as Salt Typhoon, reportedly targeted the mobile devices of diplomats, government officials and other people linked to both presidential campaigns. According to The Post, Chinese officials called claims that their country was involved in the attack on the Treasury Department "groundless" and insisted that their government "has always opposed all forms of hacker attacks."

This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/china-linked-attack-on-us-treasury-department-reportedly-targeted-its-sanctions-office-150033082.html?src=rss https://www.engadget.com/cybersecurity/china-linked-attack-on-us-treasury-department-reportedly-targeted-its-sanctions-office-150033082.html?src=rss
Created 6mo | Jan 2, 2025, 3:10:14 PM


Login to add comment

Other posts in this group

The latest Kindle Scribe is on sale for a record-low price thanks to Prime Day

The latest Amazon Kindle Scribe ereader

Jul 8, 2025, 8:40:16 AM | Engadget
Amazon Prime Day 2025 deals are live: Our top picks on headphones, smartwatches, robot vacuums and more

Amazon Prime Day 2025 is finally here, so now’s the time for members to stock up on discounted home essentials, clo

Jul 8, 2025, 8:40:15 AM | Engadget
The best Prime Day laptop deals live now: MacBooks, Windows 11 machines, Chromebooks and others

So you need a new laptop — you’ve waited for the right time. Amazon Prime Day 2025, as has been in years past, offe

Jul 8, 2025, 8:40:14 AM | Engadget
The best Prime Day Kindle deals and ereader sales

If you want to read more and stare at your phone less, an ereader can help. And Amazon's Prime Day sale can help yo

Jul 8, 2025, 8:40:13 AM | Engadget
The best Prime Day deals on Amazon devices: Save on Kindle ereaders, Echo speakers and more

If you’re on the market for a Kindle, Fire TV device or Echo speaker, Amazon Prime Day is basically Black Friday fo

Jul 8, 2025, 8:40:11 AM | Engadget
Prime Day 2025: The best headphone and earbud deals available right now

Prime Day is here, and now is an excellent time to upgrade your personal audio gear. Whether you’re into

Jul 8, 2025, 8:40:10 AM | Engadget
Amazon's Fire TV Stick 4K Max is on sale for $35 this Prime Day

If you already plan on using Prime Day as an excuse to upgrade your home theater, Amazon has a great deal on one of its premium streaming dongles that could be the perfect thing to complete your se

Jul 8, 2025, 6:20:15 AM | Engadget