American Invest Hub
  • Politics
  • Investing
  • Business
  • Latest News

American Invest Hub

  • Politics
  • Investing
  • Business
  • Latest News
Latest News

China-linked hackers target US Treasury through compromised software provider in cyber attack

by admin December 31, 2024
December 31, 2024

According to a letter sent to Congress, Chinese state-sponsored hackers accessed sensitive Treasury data through a compromised cloud-based service provided by BeyondTrust Inc.

While the department has contained the immediate threat, the incident reveals significant risks in outsourcing critical infrastructure to external vendors.

This breach comes amid escalating concerns over cyber-espionage campaigns targeting US agencies and private firms, raising questions about the robustness of existing security protocols.

As international tensions flare, cybersecurity is emerging as a pivotal issue in safeguarding national interests.

Chinese-linked hackers exploit software provider loophole

Investigations into the Treasury breach revealed that hackers gained access via a key used by BeyondTrust to secure its cloud-based services.

The attack allowed the perpetrators to infiltrate specific Treasury workstations and access unclassified documents.

BeyondTrust, a federal contractor with over $4 million in government contracts, also serves the Departments of Defense, Veterans Affairs, and Justice.

While the affected service has been disabled, the incident has drawn scrutiny to the broader ecosystem of third-party vendors.

Experts are questioning whether stringent security audits are being conducted before awarding such contracts, particularly given the sensitive nature of the data involved.

The breach highlights an alarming trend: state-backed actors increasingly targeting indirect entry points, such as contractors, to bypass direct security measures.

The Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and other agencies are now collaborating on the investigation, aiming to prevent recurrence.

China-US cyber tensions escalate

This incident is part of a wider pattern of alleged cyber-espionage by Chinese state-sponsored groups.

Notably, the Salt Typhoon group has been implicated in attacks on US telecommunications firms, reportedly accessing private communications of prominent political figures.

These breaches come after a period of relative détente in US-China relations, complicating diplomatic efforts.

China has denied involvement, with its Washington embassy accusing the US of “smear attacks” and demanding evidence.

The timing of these incidents, coinciding with President Biden’s final month in office, has fuelled speculation about geopolitical motives.

The Treasury hack and telecom espionage expose a critical vulnerability in the US government’s cyber defences: reliance on third-party vendors.

With agencies dependent on private firms for operational support, the potential for supply chain infiltration becomes a pressing concern.

These developments have reignited debates on domestic technological self-reliance and the need for stricter cybersecurity frameworks.

What’s next for US cybersecurity policy?

In response to these threats, the White House has pledged decisive action, including a ban on China Telecom and plans for stricter oversight of federal contractors.

These measures align with broader efforts to hold Beijing accountable for cyberattacks while strengthening domestic cybersecurity infrastructure.

The Treasury breach has also prompted a reassessment of vendor relationships.

Moving forward, agencies are likely to demand enhanced compliance measures from contractors, ensuring better protection against state-sponsored threats.

Meanwhile, cybersecurity experts are urging the administration to invest in advanced detection systems to identify breaches earlier.

As the geopolitical stakes rise, the Treasury hack serves as a stark reminder of the need for proactive measures in securing the nation’s digital assets.

The post China-linked hackers target US Treasury through compromised software provider in cyber attack appeared first on Invezz

0
FacebookTwitterGoogle +Pinterest
previous post
Will the US economy and the stock market continue their growth into 2025?
next post
Domino’s and Nike: why investors are betting on a 2025 comeback

Related Posts

Israeli military presents plan for evacuating Gaza’s population...

February 27, 2024

Iran claims Hamas leader killed by ‘short-range projectile,’...

August 4, 2024

Mexico’s inflation drops to 4.99% in August, signaling...

September 10, 2024

A golden opportunity for India’s trade policy: Will...

January 3, 2025

Middle East braces for week that could determine...

August 6, 2024

China launches satellites to rival SpaceX’s Starlink in...

August 9, 2024

Russian-controlled Zaporizhzhia nuclear reactor damaged following drone attack

April 9, 2024

Gas and LNG remain crucial for Australia’s energy...

March 11, 2025

Israel not sending delegation to Cairo for Gaza talks,...

March 4, 2024

Bangladesh bans Jamaat-e-Islami party following violent protests that...

August 2, 2024

    Stay updated with the latest news, exclusive offers, and special promotions. Sign up now and be the first to know! As a member, you'll receive curated content, insider tips, and invitations to exclusive events. Don't miss out on being part of something special.


    By opting in you agree to receive emails from us and our affiliates. Your information is secure and your privacy is protected.

    Latest News

    • How Donald Trump’s immigration crackdown may tank the labor market

      August 4, 2025
    • Trump’s tariff threat looms over India’s Russian oil deals

      August 4, 2025
    • Trump moves nuclear submarines near Russia: what triggered the move and what’s ahead

      August 3, 2025
    • BOE rate cuts offer little relief as UK households face mounting financial strain

      August 3, 2025
    • Retail investors shift focus to Europe as US valuations stretch

      August 3, 2025

    Categories

    • Business (3,583)
    • Investing (2,703)
    • Latest News (2,031)
    • Politics (1,530)
    • About us
    • Contact us
    • Privacy Policy
    • Terms & Conditions

    Disclaimer: americaninvesthub.com, its managers, its employees, and assigns (collectively “The Company”) do not make any guarantee or warranty about what is advertised above. Information provided by this website is for research purposes only and should not be considered as personalized financial advice. The Company is not affiliated with, nor does it receive compensation from, any specific security. The Company is not registered or licensed by any governing body in any jurisdiction to give investing advice or provide investment recommendation. Any investments recommended here should be taken into consideration only after consulting with your investment advisor and after reviewing the prospectus or financial statements of the company.

    Copyright © 2025 americaninvesthub.com | All Rights Reserved