Connect with us

International

China denies claims of cyberattacks on US Treasury

Published

on

China on Tuesday denied accusations that the country’s state-sponsored actor was behind a cyber breach at the US Treasury Department, calling the claims “groundless.”

According to a letter to Congress, the Treasury said the attack resulted in access to some of its workstations.

According to the Treasury, the incident happened earlier this month, when the actor compromised a third-party cybersecurity service provider and could remotely access the workstations and some unclassified documents.

China denied the claims, with the foreign ministry saying Beijing “has always opposed all forms of hacker attacks, and we are even more opposed to spreading false information against China for political purposes.”

“We have stated our position many times regarding such groundless accusations that lack evidence,” foreign ministry spokeswoman Mao Ning said.

The Treasury contacted the US Cybersecurity and Infrastructure Security Agency after it was alerted by its provider BeyondTrust, and has been working with law enforcement to ascertain the impact.

“The compromised BeyondTrust service has been taken offline and there is no evidence indicating the threat actor has continued access to Treasury systems or information,” the department’s spokesperson said.

In its letter to the leadership of the Senate Banking Committee, the Treasury said: “Based on available indicators, the incident has been attributed to a China state-sponsored Advanced Persistent Threat actor.”

An APT refers to a cyberattack where an intruder establishes and maintains unauthorised access to a target, remaining undetected for a sustained period of time.

The department did not provide further details on what was affected by the breach but said more information would be released in a supplemental report at a later date.

READ ALSO: South Korean court issues arrest warrant for impeached President Yoon

“Treasury takes very seriously all threats against our systems, and the data it holds,” the spokesperson added.

Several countries, notably the United States, have voiced alarm in recent years at what they say is Chinese-government-backed hacking activity targeting their governments, militaries and businesses.

Beijing rejects the allegations and has previously said that it opposes and cracks down on all forms of cyberattacks.

In September, the US Justice Department said it had neutralised a cyber-attack network that affected 200,000 devices worldwide, alleging it was run by hackers backed by the Chinese government.

In February, US authorities also said they had dismantled a network of hackers known as “Volt Typhoon.”

The group was said to be targeting key public sector infrastructure like water treatment plants and transportation systems at the behest of China.

In 2023, tech giant Microsoft said Chinese-based hackers seeking intelligence information breached the email accounts of a number of US government agencies.

The group, Storm-0558, had breached email accounts at approximately 25 organisations and government agencies.

Accounts belonging to the State Department and Commerce Secretary Gina Raimondo were among those hacked in that breach.

Join the conversation

Opinions

Support Ripples Nigeria, hold up solutions journalism

Balanced, fearless journalism driven by data comes at huge financial costs.

As a media platform, we hold leadership accountable and will not trade the right to press freedom and free speech for a piece of cake.

If you like what we do, and are ready to uphold solutions journalism, kindly donate to the Ripples Nigeria cause.

Your support would help to ensure that citizens and institutions continue to have free access to credible and reliable information for societal development.

Donate Now