The attack seems to be linked to a security incident BeyondTrust disclosed earlier this month, impacting customers using its remote support software. At the time, BeyondTrust attributed the attack to a compromised API key for its remote support software, adding that it “immediately revoked the API key, notified known impacted customers, and suspended those instances the same day.” The Verge reached out to BeyondTrust with a request for comment but didn’t immediately hear back.
“Treasury takes very seriously all threats against our systems, and the data it holds,” Gwin said. “Over the last four years, Treasury has significantly bolstered its cyber defense, and we will continue to work with both private and public sector partners to protect our financial system from threat actors.”
Published: 2024-12-30T17:25:14