SafetyDetectives
$ United States dollar
$ United States dollar Euro£ British poundAED UAE dirhamARS Argentine pesoAU$ Australian dollarBGN Bulgarian levR$ Brazilian realCA$ Canadian dollarCHF Swiss francCLP Chilean pesoCN¥ Chinese yuanCOP Colombian pesoCZK Czech korunaDKK Danish kroneEGP Egyptian poundHK$ Hong Kong dollarHUF Hungarian forintIDR Indonesian rupiah Israeli new shekelINR Indian rupee¥ Japanese yen South Korean wonMX$ Mexican pesoMYR Malaysian ringgitNOK Norwegian kroneNZ$ New Zealand dollarPLN Polish złotyRON Romanian leuRUB Russian rubleSAR Saudi riyalSEK Swedish kronaSGD Singapore dollar฿ Thai bahtTRY Turkish liraNT$ New Taiwan dollarUAH Ukrainian hryvnia Vietnamese DongZAR South African rand

US Treasury Breach Compromised Several Senior Official's Laptops

Tyler Cross
Tyler Cross Senior Writer
Published on: January 7, 2025
Tyler Cross Tyler Cross
Published on: January 7, 2025 Senior Writer

Investigators discovered that several senior US officials had their laptops compromised as a result of the Chinese threat agent-linked hack on the US Treasury Department.

Earlier this week, it was disclosed to the public that the Treasury Department and Office of Foreign Assets Control (OFAC) faced a serious data breach on Dec. 8. Experts believe the culprit is linked to the People’s Republic of China (PRC) due to the similarity in methods used in other attacks.

During the attack, multiple unnamed senior officials had their laptops compromised, and “unclassified material” on their computers was stolen. Over 100 computers were affected.

The stolen data includes “drafts and notes for policy decisions, itineraries and travel planning documents for Treasury leaders, as well as some internal communications,” Bloomberg wrote.

Despite China refuting the accusation, experts believe that PRC-affiliated hackers stole an API-key and used that to hack into the third-party cybersecurity company and US vendor, BeyondTrust. From there, they posed tech support until they could crack into secret government files.

The investigation is ongoing and new elements of the story are still being released. The situation left US lawmakers concerned and seeking answers.

“The fact that a CCP-sponsored APT actor was able to access Treasury’s information systems is unacceptable and raises serious questions about the protocols for safeguarding sensitive federal government information from future cybersecurity incidents,” writes Senator Tim Scott in a letter to Secretary Yellen.

The letter was co-written by French Hill, Vice Chair of the House Committee on Financial Services. Alongside raising scathing questions about the governments ability to protect itself, they are demanding answers from top officials.

“(The) Treasury maintains some of the most highly sensitive information on US persons throughout government, including tax information, business beneficial ownership, and suspicious activity reports.”

The story is still unfolding and the investigation is being handled by multiple agencies, including the FBI and CISA.

About the Author
Tyler Cross
Tyler Cross
Senior Writer
Published on: January 7, 2025

About the Author

Tyler is a writer at SafetyDetectives with a passion for researching all things tech and cybersecurity. Prior to joining the SafetyDetectives team, he worked with cybersecurity products hands-on for more than five years, including password managers, antiviruses, and VPNs and learned everything about their use cases and function. When he isn't working as a "SafetyDetective", he enjoys studying history, researching investment opportunities, writing novels, and playing Dungeons and Dragons with friends.

Leave a Comment