This time it is the US Treasury. US Treasury Hacked by Chinese State-Sponsored Actor, Agency Says - Bloomberg
Some day the government will have cybersecurity, but it is not this day.
The US Treasury Department was hacked by a Chinese state-sponsored actor through a third-party software service provider, according to letter the agency sent to Congress on Monday.
The agency described the intrusion as a “major cybersecurity incident,” since it was attributed to a state-sponsored actor, according to the letter, which was reviewed by Bloomberg News.
The hack came through BeyondTrust, an interesting name for a security provider. Espeically since they have apparenlty fallen down on the job.
Here is how BeyondTrust describes their company:
BeyondTrust fights every day to secure identities, intelligently remediate threats, and deliver dynamic access to empower and protect organizations around the world. Our vision is a world where all identities and access are protected from cyber threats.
BeyondTrust provides remote support for companies, and organizations, including the treasury. From Bleeping Computer:
After investigating the attack, BeyondTrust discovered two zero-day vulnerabilities, CVE-2024-12356 and CVE-2024-12686, that allowed threat actors to breach and take over Remote Support SaaS instances.
And the Treasury wants you to believe that "all is well."
Treasury says ‘no evidence’ hacker continues to have access
Which is not the categorical statement that they would like you to believe.
No comments:
Post a Comment
Comment Moderation is in place. Your comment will be visible as soon as I can get to it. Unless it is SPAM, and then it will never see the light of day.
Be Nice. Personal Attacks WILL be deleted. And I reserve the right to delete stuff that annoys me.