American Invest Hub
  • Politics
  • Investing
  • Business
  • Latest News

American Invest Hub

  • Politics
  • Investing
  • Business
  • Latest News
Latest News

China-linked hackers target US Treasury through compromised software provider in cyber attack

by admin December 31, 2024
December 31, 2024

According to a letter sent to Congress, Chinese state-sponsored hackers accessed sensitive Treasury data through a compromised cloud-based service provided by BeyondTrust Inc.

While the department has contained the immediate threat, the incident reveals significant risks in outsourcing critical infrastructure to external vendors.

This breach comes amid escalating concerns over cyber-espionage campaigns targeting US agencies and private firms, raising questions about the robustness of existing security protocols.

As international tensions flare, cybersecurity is emerging as a pivotal issue in safeguarding national interests.

Chinese-linked hackers exploit software provider loophole

Investigations into the Treasury breach revealed that hackers gained access via a key used by BeyondTrust to secure its cloud-based services.

The attack allowed the perpetrators to infiltrate specific Treasury workstations and access unclassified documents.

BeyondTrust, a federal contractor with over $4 million in government contracts, also serves the Departments of Defense, Veterans Affairs, and Justice.

While the affected service has been disabled, the incident has drawn scrutiny to the broader ecosystem of third-party vendors.

Experts are questioning whether stringent security audits are being conducted before awarding such contracts, particularly given the sensitive nature of the data involved.

The breach highlights an alarming trend: state-backed actors increasingly targeting indirect entry points, such as contractors, to bypass direct security measures.

The Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and other agencies are now collaborating on the investigation, aiming to prevent recurrence.

China-US cyber tensions escalate

This incident is part of a wider pattern of alleged cyber-espionage by Chinese state-sponsored groups.

Notably, the Salt Typhoon group has been implicated in attacks on US telecommunications firms, reportedly accessing private communications of prominent political figures.

These breaches come after a period of relative détente in US-China relations, complicating diplomatic efforts.

China has denied involvement, with its Washington embassy accusing the US of “smear attacks” and demanding evidence.

The timing of these incidents, coinciding with President Biden’s final month in office, has fuelled speculation about geopolitical motives.

The Treasury hack and telecom espionage expose a critical vulnerability in the US government’s cyber defences: reliance on third-party vendors.

With agencies dependent on private firms for operational support, the potential for supply chain infiltration becomes a pressing concern.

These developments have reignited debates on domestic technological self-reliance and the need for stricter cybersecurity frameworks.

What’s next for US cybersecurity policy?

In response to these threats, the White House has pledged decisive action, including a ban on China Telecom and plans for stricter oversight of federal contractors.

These measures align with broader efforts to hold Beijing accountable for cyberattacks while strengthening domestic cybersecurity infrastructure.

The Treasury breach has also prompted a reassessment of vendor relationships.

Moving forward, agencies are likely to demand enhanced compliance measures from contractors, ensuring better protection against state-sponsored threats.

Meanwhile, cybersecurity experts are urging the administration to invest in advanced detection systems to identify breaches earlier.

As the geopolitical stakes rise, the Treasury hack serves as a stark reminder of the need for proactive measures in securing the nation’s digital assets.

The post China-linked hackers target US Treasury through compromised software provider in cyber attack appeared first on Invezz

0
FacebookTwitterGoogle +Pinterest
previous post
Will the US economy and the stock market continue their growth into 2025?
next post
Domino’s and Nike: why investors are betting on a 2025 comeback

Related Posts

US-China tensions drive $4.1 trillion in assets to...

November 27, 2024

UNRWA to close East Jerusalem headquarters after arson attack...

May 12, 2024

Athens turns orange, Helsinki goes white as Europe’s...

April 25, 2024

Decoding US gold bar tariff twist: how customs...

August 10, 2025

The alleged Mexican drug cartel bosses arrested or...

July 27, 2024

US inflation drops to 2.5% in August, lowest...

September 12, 2024

US Air Force member charged with kidnapping and...

June 28, 2024

Telegram founder faces probe into alleged ‘acts of...

August 30, 2024

Families of hostages held in Gaza slam Netanyahu...

July 25, 2024

What Donald Trump’s presidency means for DJT’s future:...

December 30, 2024

    Stay updated with the latest news, exclusive offers, and special promotions. Sign up now and be the first to know! As a member, you'll receive curated content, insider tips, and invitations to exclusive events. Don't miss out on being part of something special.


    By opting in you agree to receive emails from us and our affiliates. Your information is secure and your privacy is protected.

    Latest News

    • FBI raid on John Bolton’s home in Washington linked to classified documents

      August 25, 2025
    • Argentine senate deals blow to Milei’s austerity agenda with university budget boost

      August 25, 2025
    • Jackson Hole Symposium: what Powell said about economic effects of Trump’s tariffs

      August 25, 2025
    • At Jackson Hole, Fed Chair Powell signals possible cuts while warning of uncertainty

      August 25, 2025
    • Trump threatens to fire Fed Governor Lisa Cook amid mortgage fraud allegations

      August 25, 2025

    Categories

    • Business (3,763)
    • Investing (2,783)
    • Latest News (2,048)
    • Politics (1,530)
    • About us
    • Contact us
    • Privacy Policy
    • Terms & Conditions

    Disclaimer: americaninvesthub.com, its managers, its employees, and assigns (collectively “The Company”) do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.

    Copyright © 2025 americaninvesthub.com | All Rights Reserved