Chinese hackers have breached the U.S. Treasury Department, exploiting a flaw in third-party cybersecurity vendor BeyondTrust to steal unclassified documents. Officials have described the incident as a “major breach.” in a letter to lawmakers.
The attackers used a compromised key to bypass BeyondTrust’s security protocols, enabling remote access to Treasury workstations. The breach exposed unclassified data stored by departmental employees.
Shocking claims of US Treasury hack by China raise more questions than answers, especially given the suspicious timing. pic.twitter.com/QpOt2NCPCC
— Truthful Voice (@webheraldnet) December 30, 2024
BeyondTrust informed Treasury of the breach on December 8, prompting an investigation involving the FBI and CISA. Treasury officials have emphasized their commitment to improving cybersecurity measures, noting recent enhancements to protect sensitive data.
SHOCKING: 🇨🇳 China Allegedly Hacks US Treasury in Massive Cyberattack – FBI Launches Urgent Probe
What do you think this means for US-China relations? 🤯 pic.twitter.com/5EKpOjhdGI
— Nyke Nakamoto (@Nyke_Nakamoto) December 30, 2024
Experts believe the breach is consistent with operations linked to Chinese state-sponsored hacking groups. “This incident fits a well-documented pattern,” said Tom Hegel of SentinelOne, pointing to the attackers’ use of trusted third-party services to gain access.
BREAKING: China hacked the U.S. Treasury Department, gaining access to workstations and documents – NYT
I bet their login credentials were extremely secure…like “guest” or “password1.” pic.twitter.com/KkGoUJr5Kj
— Chad Prather (@WatchChad) December 30, 2024
China’s government has denied involvement, accusing the U.S. of making unsubstantiated claims. BeyondTrust has confirmed a security breach affecting some clients and is working to resolve the issue.
BREAKING: CHINA HACKS THE US TREASURY DEPARTMENT
THE TIME TO DITCH THE DOLLAR IS NIGH pic.twitter.com/q3DVC2uRvp
— Aaron Day (@AaronRDay) December 30, 2024
The compromised service has been taken offline, and Treasury officials believe the breach has been contained, though investigations are ongoing.
“⚡️ US Treasury claims China hacked ‘some of its workstations.’
Apparently the Chinese hackers found ‘Top 5 ways to raise the National Debt’ in a locked folder.”
– @RT_com pic.twitter.com/RJpOqK4d7X
— George Weah MDAV∆♛🍷🇳🇬 (@marinelo_dav) December 30, 2024
China hacks US Treasury only to find it empty
with an IOU for $199 Trillion Dollars from Ukraine
and the Bidens. pic.twitter.com/7hnxrxDpWT— Azore Lure (@AzoreLure) December 30, 2024