BeyondTrust breach impacted 17 SaaS customers via compromised API key linked to Silk Typhoon; U.S. Treasury affected.
In the ever-evolving world of cybersecurity, even organizations that meet stringent security standards can be victims of sophisticated cyberattacks.
In early January, the Treasury Department disclosed that its network was breached by attackers who used a stolen Remote Support SaaS API key to compromise a BeyondTrust instance used by the agency.
U.S. Treasury Secretary Janet Yellen's computer was hacked and unclassified files were accessed as part of a broader breach ...
The Treasury said the access occurred through a cloud-based remote support service operated by BeyondTrust. The vendor then confirmed that an API key for its Remote Support SaaS service was ...
CISA said it is working closely with officials at the Treasury Department and BeyondTrust to fully mitigate and understand the impact of the attack, which has been attributed to threat actors ...
Late last month the US Treasury reported that an unspecified number of computers had been compromised by Chinese hackers ...
That vulnerability has a CVSS score of 9.8. Federal authorities and the company have yet to explicitly tie the BeyondTrust CVEs to the Treasury Department hack or explain exactly what role they ...
Threat actors entered Treasury Department systems through BeyondTrust. The breach may be related to the Salt Typhoon attacks reported throughout the year. A Chinese-state-sponsored cyberattack ...
Chinese hackers accessed over 400 computers and over 3,000 unclassified files when they infiltrated the U.S. Treasury.
Evidently, the U.S. Treasury cyberattack was related to the Treasury’s use of BeyondTrust, a cloud-based service used to provide remote technical support for Treasury offices. The incident is ...