Cyber Attack cyber

US Treasury

Jan 23, 2025 1 min read
US Treasury

The US Treasury experienced a significant cyberespionage campaign resulting in the penetration of at least 400 of its PCs and the theft of over 3,000 files. Though hackers targeted sanctions and law-enforcement related information, they did not obtain access to emails or classified network segments, nor was long-term access malware identified. The scope of intrusion by Chinese state-sponsored hackers, including efforts by Salt Typhoon, suggests a focus on espionage without immediate financial or personal data leak but potential long-term strategic implications.

Source: https://www.wired.com/story/us-names-one-of-the-hackers-allegedly-behind-massive-salt-typhoon-breaches/

TPRM report: https://scoringcyber.rankiteo.com/company/us-treasury

"id": "us-000012325",
"linkid": "us-treasury",
"type": "Cyber Attack",
"date": "1/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Public Sector',
                        'location': 'United States',
                        'name': 'US Treasury',
                        'type': 'Government Agency'}],
 'attack_vector': 'Unspecified',
 'data_breach': {'data_exfiltration': 'Yes',
                 'number_of_records_exposed': '3,000 files',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Sanctions and law-enforcement '
                                             'related information'},
 'description': 'The US Treasury experienced a significant cyberespionage '
                'campaign resulting in the penetration of at least 400 of its '
                'PCs and the theft of over 3,000 files. Though hackers '
                'targeted sanctions and law-enforcement related information, '
                'they did not obtain access to emails or classified network '
                'segments, nor was long-term access malware identified. The '
                'scope of intrusion by Chinese state-sponsored hackers, '
                'including efforts by Salt Typhoon, suggests a focus on '
                'espionage without immediate financial or personal data leak '
                'but potential long-term strategic implications.',
 'impact': {'data_compromised': 'Sanctions and law-enforcement related '
                                'information',
            'systems_affected': '400 PCs'},
 'motivation': 'Espionage',
 'threat_actor': 'Chinese state-sponsored hackers',
 'title': 'US Treasury Cyberespionage Campaign',
 'type': 'Cyberespionage'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.