Summary: The US Cybersecurity and Infrastructure Security Agency (CISA) has confirmed a third-party breach affecting only the US Treasury Department, attributed to Chinese threat actors. The breach involved exploiting a vulnerability in BeyondTrust’s software, allowing unauthorized access to sensitive systems and data.
Threat Actor: Chinese threat actors | Chinese threat actors
Victim: US Treasury Department | US Treasury Department
Key Point :
- CISA confirmed that the breach was limited to the Treasury Department and no other federal agencies were impacted.
- The attackers exploited a vulnerability in BeyondTrust’s software to gain unauthorized access to Treasury systems.
- BeyondTrust has completed its forensic investigation and patched all affected instances of its software.