niftycent.com
NiftyCent
US
Login
Marketplace
Discounts

China-linked hackers accessed over 400 US Treasury computers

The US Treasury Department announced in a letter back in December that it had been the victim of a security breach, attributing it to a “China state-sponsored Advanced Persistent Threat actor.” Now we know more about the extent of the hack, thanks to reporting by Bloomberg.

The hacking group got into more than 400 laptop and desktop computers, many of which were linked to senior leaders focused on “sanctions, international affairs and intelligence.” They also accessed employee usernames and passwords, in addition to more than 3,000 files on unclassified personal computers. These documents included travel data, organizational charts, sanction materials and foreign investment metrics.

An agency report indicates that the perpetrators likely stole a whole lot of this data, but were unable to get into the Treasury’s classified or email systems. The hackers did access materials regarding investigations run by the Committee on Foreign Investment. This committee reviews security implications surrounding real estate purchases and foreign investments in the US.

The agency report also notes that there wasn’t any evidence to suggest that the hackers tried to hide in the Treasury’s systems for the purpose of long-term intelligence gathering, and they didn’t leave behind any malware.

China reacts on ‘Treasury-Hack’ pic.twitter.com/7j7OaQ6eKD

— Willem Middelkoop (@wmiddelkoop) January 2, 2025

Investigators have attributed the intrusion to a notorious Chinese state-sponsored hacking group called Silk Typhoon, Halfnium or UNC5221. It has been suggested that they performed the hack outside of normal working hours to avoid detection. Last month, a spokesperson for the Chinese Foreign Ministry called the accusation that the attack was state-sponsored “unwarranted and groundless.”

Counterintelligence officials are still in the midst of a “comprehensive damage assessment” but Treasury employees are set to brief the Senate Committee on Banking, Housing and Urban Affairs on the matter this week.

This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/china-linked-hackers-accessed-over-400-us-treasury-computers-182420268.html?src=rss https://www.engadget.com/cybersecurity/china-linked-hackers-accessed-over-400-us-treasury-computers-182420268.html?src=rss
Created 1mo | Jan 16, 2025, 8:10:15 PM


Login to add comment

Other posts in this group

Tron: Catalyst hits consoles and PC on June 17
Tron: Catalyst hits consoles and PC on June 17

Tron: Catalyst, the follow-up to Tron: Identity and the next game from Bithell Games, is

Feb 24, 2025, 11:10:14 PM | Engadget
Xbox showcase gave release dates for three indie games we're looking forward to
Xbox showcase gave release dates for three indie games we're looking forward to

Monday's

Feb 24, 2025, 11:10:13 PM | Engadget
Sigma's latest camera is so minimalist it doesn't have a memory card slot
Sigma's latest camera is so minimalist it doesn't have a memory card slot

Sigma has announced

Feb 24, 2025, 11:10:12 PM | Engadget
Disney+ just dropped an explosive trailer for Andor season 2
Disney+ just dropped an explosive trailer for Andor season 2

It’s been well over two years, but the wait is almost over. The second season of Andor hits Disney+ on April 22. The platform

Feb 24, 2025, 8:40:26 PM | Engadget
Gmail will stop using SMS for two-factor authentication
Gmail will stop using SMS for two-factor authentication

Google is planning to end support for SMS-based two-factor authentication in Gmail,

Feb 24, 2025, 8:40:25 PM | Engadget
Balatro is about to hook a lot more players now that it's on Game Pass
Balatro is about to hook a lot more players now that it's on Game Pass
Feb 24, 2025, 8:40:24 PM | Engadget
How to follow the Amazon devices event on February 26
How to follow the Amazon devices event on February 26

It's sort of out of character for Amazon to be hosting

Feb 24, 2025, 8:40:22 PM | Engadget
Techie
Techie