Third-party cybersecurity provider was compromised after hackers obtained key to override certain systems
Chinese state-sponsored hackers breached the US treasury department earlier this month, accessing several employee workstations and unclassified documents, according to an agency spokesperson.
The breach was orchestrated via a third-party cybersecurity service provider, BeyondTrust. Hackers were able to gain access to a key used by the vendor to override certain parts of the system, according to a letter the treasury department sent to lawmakers on Monday that was reviewed by the Guardian.
