Hackers linked to the Chinese government have infiltrated the U.S. Treasury Department, stealing unclassified documents in what officials are calling a “major incident.” The breach was facilitated by a vulnerability in third-party vendor BeyondTrust’s cloud-based support service.
The attackers exploited a compromised digital key to override security protocols and gain remote access to Treasury workstations. The breach allowed them to retrieve unclassified data stored on the compromised systems.
Shocking claims of US Treasury hack by China raise more questions than answers, especially given the suspicious timing. pic.twitter.com/QpOt2NCPCC
— Truthful Voice (@webheraldnet) December 30, 2024
Treasury officials were informed of the incident on December 8 by BeyondTrust. The department has since worked with federal agencies, including the FBI and CISA, to investigate the breach and secure its systems. “Treasury takes very seriously all threats against our systems,” officials said in a statement.
SHOCKING: 🇨🇳 China Allegedly Hacks US Treasury in Massive Cyberattack – FBI Launches Urgent Probe
What do you think this means for US-China relations? 🤯 pic.twitter.com/5EKpOjhdGI
— Nyke Nakamoto (@Nyke_Nakamoto) December 30, 2024
Cybersecurity researchers suggest the attack fits the profile of operations linked to Chinese state-sponsored groups. SentinelOne’s Tom Hegel noted that exploiting third-party services has become a preferred tactic for such groups.
BREAKING: China hacked the U.S. Treasury Department, gaining access to workstations and documents – NYT
I bet their login credentials were extremely secure…like “guest” or “password1.” pic.twitter.com/KkGoUJr5Kj
— Chad Prather (@WatchChad) December 30, 2024
China’s embassy in Washington has rejected the accusations, calling them baseless. BeyondTrust acknowledged a recent security breach affecting its remote support software and stated that an investigation is ongoing.
BREAKING: CHINA HACKS THE US TREASURY DEPARTMENT
THE TIME TO DITCH THE DOLLAR IS NIGH pic.twitter.com/q3DVC2uRvp
— Aaron Day (@AaronRDay) December 30, 2024
The compromised service has been shut down, and officials believe there is no further risk of unauthorized access at this time.
“⚡️ US Treasury claims China hacked ‘some of its workstations.’
Apparently the Chinese hackers found ‘Top 5 ways to raise the National Debt’ in a locked folder.”
– @RT_com pic.twitter.com/RJpOqK4d7X
— George Weah MDAV∆♛🍷🇳🇬 (@marinelo_dav) December 30, 2024
China hacks US Treasury only to find it empty
with an IOU for $199 Trillion Dollars from Ukraine
and the Bidens. pic.twitter.com/7hnxrxDpWT— Azore Lure (@AzoreLure) December 30, 2024