U.S. Treasury Cyberattack Attributed to Alleged Chinese State-Sponsored Hackers

The breach, reportedly involving a compromised software key, accessed non-classified systems, while China denies the accusations as politically motivated.

The U.S. Treasury reported a cyberattack earlier in December that involved unauthorized access to several workstations via compromised third-party software, BeyondTrust.
Officials claim the attack was conducted by an Advanced Persistent Threat (APT) group allegedly supported by the Chinese government, though attribution remains technically and politically complex.
The breach reportedly did not compromise classified information, and the affected software has since been removed from service to prevent further access.
China's Ministry of Foreign Affairs has denied the allegations, calling them baseless and accusing the U.S. of spreading misinformation for political purposes.
The Treasury Department has committed to providing a detailed report on the incident within 30 days, as required by federal cybersecurity laws.