Portuguese 
English 
Spanish 
2 min of reading 
1 comment 
State-Sponsored Chinese Hackers Breach U.S. Treasury Department, Compromising Unclassified Data. Action Reveals Serious Flaws in American Cybersecurity
A state-sponsored group of cybercriminals from China remotely accessed certain workstations used by employees of the U.S. Treasury Department and obtained some unclassified documents. The cybersecurity incident, classified as “significant” by the affected agency, was disclosed in recent hours in a public letter addressed to members of Congress.
To achieve their goal, according to the report, the attackers compromised the security of an external vendor. This is BeyondTrust, which was responsible for securing a remote technical support system used by U.S. Treasury employees. Specifically, an access key was stolen that allowed the aforementioned invasion to occur. They explain that measures were then taken to address the issue.
Not the First Chinese Cyberattack Against the United States
One of the measures taken was to disconnect the affected service, while another was to initiate an investigation with the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Intelligence Community, along with independent forensic investigators. The purpose of this latter action was to determine the extent of the attack and, importantly, to identify those responsible.
-
Scientists discover how the mosquito uses a natural “GPS” to find humans and reveal why the head and breath become targets in the attack.
-
100 Italian chefs gathered in Chelsea and created the world’s largest tiramisu, measuring 440.6 meters, using 3,000 eggs, 400 kilograms of sugar, and 50,000 ladyfingers, surpassing the previous record of 273.5 meters and putting chef Mirko Ricci back at the top of Guinness with a giant-scale dessert.
-
Earth already has an end date: Nobel laureate warns that humanity’s time is short and reveals the terrifying reason
-
University of Amsterdam creates a metamaterial that learns, memorizes shapes, changes its own stiffness, and moves autonomously, in research that dangerously blurs the line between matter, machine, and life.
Authorities attributed the incident to a state-sponsored group of cybercriminals from China. Specifically, they refer to an Advanced Persistent Threat (APT). Behind this type of activity are usually persistent attacks with sophisticated techniques. Certainly, breaching the security of one of the U.S. government’s departments is no small feat.
Speaking of the U.S. Treasury Department is mentioning the agency that oversees important and often confidential data regarding financial systems worldwide. Among its functions is analyzing the economies of other countries, such as China, and implementing sanctions. This agency has indeed been the instrument for applying sanctions against Chinese companies amid Russia’s invasion of Ukraine.
We say that something is happening with the cybersecurity of the world’s largest economic and military power because this is not the first time in recent years that Chinese cybercriminals have managed to breach their systems. In 2023, around 60,000 emails from the State Department were leaked. And this year, it came to light that a group known as Salt Typhoon infiltrated U.S. telecommunications providers and is believed to have extracted information from elected President Donald Trump’s line.
Muito normal esses
Estados tanto um como o outro fazem a todos os outros só que uns tornam público e outros não. Não vejo nada de novo entre potencias