iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Following last month’s cyber attack on the US Treasury, the US Cybersecurity and Infrastructure Security Agency (CISA) has said that there is nothing to suggest that any other government agencies have been compromised.
In a media release, CISA wrote that it is currently investigating but that no government or federal agencies show any indication of being impacted by the incident.
“CISA is working closely with the Treasury Department and BeyondTrust to understand and mitigate the impacts of the recent cyber security incident,” the statement said.
“At this time, there is no indication that any other federal agencies have been impacted by this incident. CISA continues to monitor the situation and coordinate with relevant federal authorities to ensure a comprehensive response.
“The security of federal systems and the data they protect is of critical importance to our national security. We are working aggressively to safeguard against any further impacts and will provide updates, as appropriate.”
The cyber attack on the US Treasury first appeared on 8 December 2024 when security software provider BeyondTrust notified the US Treasury that a threat actor had used a key to access a vendor “secure cloud-based service” used to provide technical support to Treasury Departmental Offices end users.
“With access to the stolen key, the threat actor was able to override the service’s security, remotely access certain Treasury DO user workstations, and access certain unclassified documents maintained by those users,” said the Treasury in a letter to lawmakers.
The attack has so far been attributed to an unnamed Chinese state-sponsored APT actor based on investigations to date. The Treasury said that the service in question has been taken offline and that continued access by the threat actor has not been detected.
“Treasury has been working with the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the Intelligence Community, and third-party forensic investigators to fully characterise the incident and determine its overall impact. CISA was engaged immediately upon Treasury’s knowledge of the attack, and the remaining governing bodies were contacted as soon as the scope of the attack became evident,” it said.
Be the first to hear the latest developments in the cyber industry.
