Topics
Latest
AI
Amazon
Image Credits:Chip Somodevilla / Getty Images
Apps
Biotech & Health
clime
Cloud Computing
Commerce
Crypto
Enterprise
EVs
Fintech
fund raise
Gadgets
stake
Government & Policy
Hardware
layoff
Media & Entertainment
Meta
Microsoft
privateness
Robotics
Security
societal
Space
Startups
TikTok
Transportation
speculation
More from TechCrunch
Events
Startup Battlefield
StrictlyVC
Podcasts
video
Partner Content
TechCrunch Brand Studio
Crunchboard
Contact Us
The U.S. Treasury told lawmakers in a missive Monday that it was hit by a cyberattack earlier in December , which the department has attributed to Chinese governance hackers .
In the letter shared with senior U.S. House lawgiver , which TechCrunch has seen , the Treasury say the hackers gained remote admission to certain Treasury employee workstations and had access to unclassified document , in what it describe as a “ major cybersecurity incident . ”
The Treasury said it was notified on December 8 by BeyondTrust , a company that provides identity operator entree and distant support technical school for orotund organisation and government department , that hackers had “ gained access to a key used by the trafficker ” for providing removed access technical support to Treasury employees . BeyondTrustdisclosed the incident at the time , but did not say how the Florida key was receive .
A spokesperson for BeyondTrust did not answer to a petition for comment at imperativeness time . In a statement allow for to TechCrunch on Tuesday , BeyondTrust spokesperson Mike Bradshaw said the fellowship notified a “ special issue of customers ” whose systems were accessed during the December 8 incident , without naming the Treasury .
The letter aver the department engaged U.S. cybersecurity bureau CISA for assistance and , as of December 30 , it has “ no evidence indicate the terror actor has continue access to Treasury information . ”
In a brief affirmation , Treasury spokesperson Michael Gwin said that the hackers were able to “ remotely access several Treasury user workstation and sure unclassified document maintained by those users . ”
“ Treasury read very seriously all threats against our systems , and the data point it curb . Over the last four old age , Treasury has importantly bolstered its cyber defence , and we will extend to knead with both private and public sphere mate to protect our fiscal scheme from threat actors , ” the spokesperson said .
This is the late cyberattack link to China that has targeted the U.S. government in late month . China - gage hacker dubbed Salt Typhoon were behind awave of cyberattackstargeting U.S. telephone set companies and internet giants , including AT&T and Verizon , in a play to get approach to the private communications of senior U.S. administration officials , including presidential nominee .
Liu Pengyu , a interpreter for the Chinese Embassy in Washington , D.C. , denied the U.S. government ’s ascription of the cyberattack to the Taiwanese government activity , argue that the United States did not present evidence of its claim .
Updated with comment from the Chinese government , and post - publish comment from BeyondTrust .
Do you know more about the BeyondTrust cyberattack or the incident at the Treasury ? Get in touch securely on Signal and WhatsApp at +1 646 - 755 - 8849 you’re able to also institutionalise file and document viaSecureDrop .
