Portuguese 
Spanish 
2 min of reading 
1 comment 
State-Sponsored Chinese Hackers Breach U.S. Treasury Department, Compromising Unclassified Data. Action Reveals Serious Flaws in American Cybersecurity
A state-sponsored group of cybercriminals from China remotely accessed certain workstations used by employees of the U.S. Treasury Department and obtained some unclassified documents. The cybersecurity incident, classified as “significant” by the affected agency, was disclosed in recent hours in a public letter addressed to members of Congress.
To achieve their goal, according to the report, the attackers compromised the security of an external vendor. This is BeyondTrust, which was responsible for securing a remote technical support system used by U.S. Treasury employees. Specifically, an access key was stolen that allowed the aforementioned invasion to occur. They explain that measures were then taken to address the issue.
Not the First Chinese Cyberattack Against the United States
One of the measures taken was to disconnect the affected service, while another was to initiate an investigation with the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Intelligence Community, along with independent forensic investigators. The purpose of this latter action was to determine the extent of the attack and, importantly, to identify those responsible.
-
Facing a Shortfall of 83,900 Homes, Curitiba Considers Social Housing with Public Units, Reduced or Free Rent, Prioritizing Seniors, Victims of Violence, and the Homeless
-
Abandoned Building in Brazil’s Vitória to Be Transformed into 44 Affordable Housing Units with Government Funding
-
Brazil Launches First National Registry to Identify Millions of Gifted Children Hidden in Classrooms, with Only 56,000 Officially Recognized So Far
-
Wikipedia Blocks AI-Generated Edits, Citing Distrust in Automated Systems and Outlining Plans to Use Technology Without Losing Article Control
Authorities attributed the incident to a state-sponsored group of cybercriminals from China. Specifically, they refer to an Advanced Persistent Threat (APT). Behind this type of activity are usually persistent attacks with sophisticated techniques. Certainly, breaching the security of one of the U.S. government’s departments is no small feat.
Speaking of the U.S. Treasury Department is mentioning the agency that oversees important and often confidential data regarding financial systems worldwide. Among its functions is analyzing the economies of other countries, such as China, and implementing sanctions. This agency has indeed been the instrument for applying sanctions against Chinese companies amid Russia’s invasion of Ukraine.
We say that something is happening with the cybersecurity of the world’s largest economic and military power because this is not the first time in recent years that Chinese cybercriminals have managed to breach their systems. In 2023, around 60,000 emails from the State Department were leaked. And this year, it came to light that a group known as Salt Typhoon infiltrated U.S. telecommunications providers and is believed to have extracted information from elected President Donald Trump’s line.
Muito normal esses
Estados tanto um como o outro fazem a todos os outros só que uns tornam público e outros não. Não vejo nada de novo entre potencias