Chinese hackers breached the U.S. Treasury Department between September and November 2024, gaining access to more than 3,000 files, including documents from high-ranking Treasury officials, according to testimony provided to lawmakers on Wednesday, Jan. 15. The breach impacted unclassified files, including those belonging to Treasury Secretary Janet Yellen and Deputy Secretary Wally Adeyemo.
Treasury and law enforcement officials told members of Congress that the hack exploited a vulnerability in a third-party product used by the Treasury’s vendor, BeyondTrust.
Download the SAN app today to stay up-to-date with Unbiased. Straight Facts™.
Point phone camera here
The company alerted the government to the breach in December 2024. Officials confirmed that 419 Treasury computers were compromised, according to the testimony.
This breach comes amid escalating concerns about cybersecurity, particularly regarding Chinese hacking activities. In response to these growing threats, President Joe Biden issued an executive order on Thursday. Jan. 16, aimed at tightening security standards for companies that do business with the U.S. government.
The new executive order requires software providers who contract with the government to demonstrate the security of their products. This includes stringent security measures for cloud providers and internet-connected devices.
Starting in 2027, the U.S. government will only purchase products that carry the new “U.S. Cyber Trust Mark.” The new label certifies a device’s security.
FBI Director Christopher Wray has warned that China’s cyber capabilities represent “the defining threat of our generation.” In a recent interview with CBS’ “60 Minutes,” Wray described China’s cyber program as the largest in the world, surpassing every other nation combined. He emphasized the risks posed by China’s extensive data theft and its ability to infiltrate critical infrastructure.
As lawmakers and officials continue to address these cybersecurity challenges, the focus is on improving the security of government systems and the products used by contractors. The Biden administration’s efforts to strengthen cybersecurity protocols underscore the increasing urgency of defending against foreign cyber threats.
