More alleged Chinese intrusions into the US Treasury revealed

News
By
published

Details of the breach are still unfolding

An American flag flying outside the US Capitol building against a blue sky
(Image credit: Getty Images)
  • The US Treasury has revealed its foreign investments office was hit in recent cyberattack
  • The office reviews national security risks for investments
  • Breach of a third-party vendor led to US Treasury systems being accessed

The US department which reviews foreign investments for national security risks has been revealed as a further victim of the cyberattack which targeted the US Treasury department earlier this month.

The attack was declared a ‘major incident’ after a third-party cybersecurity service provider was compromised, allowing a threat actor remote access to key Treasury systems.

The Committee on Foreign Investment in the US (CFIUS) suffered a data breach as part of the campaign, CNN has revealed. The department reviews foreign investments for national security risks, and was recently granted the authority to scrutinize real estate sales near US military bases, with the scope to block Chinese investment into the US.

Carefully chosen targets

The news is the latest in a string of developments following the US Treasury department hack, in which hackers were able to gain access used by the breached vendor to override parts of the Treasury department’s systems.

The attack has sparked serious concerns for US officials, who have reportedly grown increasingly worried that the Chinese government or proxies plans to use land acquisitions to spy on US bases.

In the broader context of the Treasury attack, other targets look to have been chosen with China-US relations in mind. For example, the US sanctions office was targeted - which last week issued a sanction to a Chinese firm for its alleged role in cyberattacks.

The cyber espionage campaigns launched against US and western targets in recent months look not just to steal information and access sensitive data, but also to disrupt critical infrastructure.

In a separate recent attack, Chinese group Salt Typhoon allegedly breached 9 major telecommunications firms in a huge campaign against US critical infrastructure. Amongst the victims were Verizon, AT&T, and Lumen Technologies, who had threat actors lurking inside their networks for months.

You might also like

Ellen Jennings-Trace
Ellen Jennings-Trace
Staff Writer

Ellen has been writing for almost four years, with a focus on post-COVID policy whilst studying for BA Politics and International Relations at the University of Cardiff, followed by an MA in Political Communication. Before joining TechRadar Pro as a Junior Writer, she worked for Future Publishing’s MVC content team, working with merchants and retailers to upload content.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
China
US Treasury declares ‘major incident’ after apparent state-sponsored Chinese hack
China US flags cropped
CISA says ‘no indication’ other US government agencies affected in Treasury hack
An American flag flying outside the US Capitol building against a blue sky
Chinese cybersecurity firm sanctioned by US Treasury over alleged links to Salt Typhoon hackers
China
Chinese cybersecurity firm hit by US sanctions over ties to Flax Typhoon hacking group
China
Chinese cybersecurity firm facing US sanctions over alleged ransomware attacks
Flag of the People's Republic of China overlaid with a technological network of wires and circuits.
Salt Typhoon attacks may have hit more US firms than previously thought
Latest in Security
Webex by Cisco banner on a Chromebook
Cisco warns some Webex users of worrying security flaw, so patch now
Red padlock open on electric circuits network dark red background
AI-powered cyber threats are becoming the biggest worry for businesses everywhere
Woman using iMessage on iPhone
Apple to take legal action against British Government over backdoor request
Red padlock open on electric circuits network dark red background
Aviaton firms hit by devious new polyglot malware
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
Major ransomware attack sees Tata Technologies hit - 1.4TB dataset with over 730,000 files allegedly stolen
Image of laptop infected with malware
Ransomware criminals are now sending their demands...by snail mail?
Latest in News
A hand holding a phone showing the Android Find My Device network
Android's Find My Device can now let you track your friends – and I can't decide if that's cool or creepy
Insta360 X4 360 degree camera without lens protector
Leaked DJI Osmo 360 image suggests GoPro and Insta360 should be worried – here's why
A YouTube Premium promo on a laptop screen
A cheaper YouTube Premium Lite plan just rolled out in the US – but you’ll miss out on these 4 features
Viaim RecDot AI true wireless earbuds
These AI-powered earbuds can also act as a dictaphone with transcription when left in their case
The socket interface of the Intel Core Ultra processor
Intel unveils its most powerful AI PCs yet - new Intel Core Ultra Series 2 processors pack in vPro for lightweight laptops and high-performance workstations alike
An Nvidia GeForce RTX 5070
Nvidia confirms that an RTX 5070 Founders Edition is coming... just not on launch day
More about security
Webex by Cisco banner on a Chromebook

Cisco warns some Webex users of worrying security flaw, so patch now
Image of laptop infected with malware

Ransomware criminals are now sending their demands...by snail mail?
Haier TV M96, available in sizes of 100"/ 85"/75"

Watch the Australian Open the way it was meant to be seen: on a truly next-gen television
See more latest
Most Popular
Rocket Enterprise SSD
Sabrent launches its first 30.72TB SSD, but like all the others, you won't be able to run it on your PC (or buy it on Amazon)
Volkswagen ID.EVERY1 Concept Car
Volkswagen reveals the ID.1 concept car, which will spawn its cheapest all-electric model to date
Eurocom Raptor X17
This $12,000 laptop comes with 24TB RAID-0 SSD storage, 128GB of RAM, and Intel's most powerful mobile CPU - but no Nvidia RTX 5090M GPU
BYD Ling Yuan DJI Drone launcher
BYD’s new roof-mounted DJI drone launchpad looks like a dream for filming road trips – but less so for car safety
An AI face in profile against a digital background.
'Simulating scientists': A new AI tool wants to make serendipitous scientific discovery less human
A hand holding a phone showing the Android Find My Device network
Android's Find My Device can now let you track your friends – and I can't decide if that's cool or creepy
Webex by Cisco banner on a Chromebook
Cisco warns some Webex users of worrying security flaw, so patch now
A YouTube Premium promo on a laptop screen
A cheaper YouTube Premium Lite plan just rolled out in the US – but you’ll miss out on these 4 features
Viaim RecDot AI true wireless earbuds
These AI-powered earbuds can also act as a dictaphone with transcription when left in their case
Insta360 X4 360 degree camera without lens protector
Leaked DJI Osmo 360 image suggests GoPro and Insta360 should be worried – here's why