PCMag: “A China-backed threat actor accessed workstations and unclassified documents of US Treasury Department employees”
“Treasury said it was notified of the cyberattack on Dec. 8 by BeyondTrust, a third-party software service provider”
Hackers stole a security key, which they used to access some user workstations, some of which had sensitive but unclassified documents.
Opinion: This sounds like the blast radius is small. I’d be very concerned If they gained access to backend databases or applications. Access to Suzie’s cat pictures and some working documents…meh. Still, a big deal they got hacked, but it’s a good opportunity for the Treasury to learn.