Breach cyber

United States Treasury Department

Jan 5, 2025 1 min read
United States Treasury Department

An Advanced Persistent Threat group, suspected to be linked to the Chinese government, exploited vulnerabilities in BeyondTrust's software, resulting in a major breach of the Treasury Department. Authentication key theft allowed access to department computers with 'certain unclassified documents' compromised. The impact of this breach sees confidential governmental operations exposed, though classified as unclassified, could endanger financial stability or lead to further undisclosed consequences.

Source: https://www.wired.com/story/apple-95-million-siri-privacy-lawsuit/

TPRM report: https://scoringcyber.rankiteo.com/company/us-treasury

"id": "us-000010525",
"linkid": "us-treasury",
"type": "Breach",
"date": "1/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Government',
                        'name': 'Treasury Department',
                        'type': 'Government'}],
 'attack_vector': 'Exploitation of software vulnerabilities',
 'data_breach': {'sensitivity_of_data': 'Confidential governmental operations',
                 'type_of_data_compromised': 'Unclassified documents'},
 'description': 'An Advanced Persistent Threat group, suspected to be linked '
                'to the Chinese government, exploited vulnerabilities in '
                "BeyondTrust's software, resulting in a major breach of the "
                'Treasury Department. Authentication key theft allowed access '
                "to department computers with 'certain unclassified documents' "
                'compromised. The impact of this breach sees confidential '
                'governmental operations exposed, though classified as '
                'unclassified, could endanger financial stability or lead to '
                'further undisclosed consequences.',
 'impact': {'data_compromised': 'Certain unclassified documents',
            'operational_impact': 'Confidential governmental operations '
                                  'exposed',
            'systems_affected': 'Treasury Department computers'},
 'motivation': 'Potentially espionage',
 'threat_actor': 'Advanced Persistent Threat group linked to the Chinese '
                 'government',
 'title': 'BeyondTrust Software Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'BeyondTrust software'}
Published by
Jeremy C
Jeremy C
You might also like
Breach cyber

Helsinki

public 1 min read
A data breach affecting Helsinki, Finland’s capital and largest employer, exposed sensitive personal data of over 300,000 people.…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.