Wednesday 23 December 2020 - 02:27

US Government Hack Compromised Dozens of Treasury Email Accounts

Story Code : 905552

Senator Ron Wyden, of Oregon, provided new details of the hack following a briefing to the Senate finance committee by the IRS and treasury department.

Wyden said that though there was no indication that taxpayer data was compromised, the hack “appears to be significant”, including through the compromise of dozens of email accounts and access to the departmental offices division of the treasury department, which the senator said was home to its highest-ranking officials. In addition, the breach appeared to involve the theft of encryption keys, Wyden said.

“Treasury still does not know all of the actions taken by hackers, or precisely what information was stolen,” Wyden said in a statement.

The treasury was among the earliest known agencies reported to have been affected in a breach that now encompasses a broad spectrum of departments.

The effects and consequences of the hack are still being assessed, though the Department of Homeland Security’s cybersecurity arm said in a statement that the intrusion posed a “grave” risk to government and private networks.

In the treasury department’s case, Wyden said, the breach began in July. But experts believe the overall hacking operation began months earlier when malicious code was slipped into updates to popular software that monitors computer networks of businesses and governments. The malware, affecting a product made by the US SolarWinds company, gave elite hackers remote access into an organization’s networks so they could steal information.

It wasn’t discovered until the prominent cybersecurity company FireEye determined it had been hacked.

Microsoft, which has helped respond to the breach, revealed last week that it had identified more than 40 government agencies, think tanks, nongovernmental organizations and IT companies infiltrated by the hackers.

Microsoft notified the treasury department that dozens of email accounts were compromised.

US President Donald Trump sought to downplay the severity of the hack last week, tweeting without evidence that perhaps China was responsible. Both the secretary of state, Mike Pompeo, and the attorney general, William Barr, have stated publicly that they believe Russia was responsible, the consensus of others in the US government and of the cybersecurity community. Russia has denied involvement.

Comment

Latest News
Top hits

Kremlin: Situation on Battlefield Clear, New Military Aid to Ukraine Not to Change Dynamics

Poll: Most Americans Believe US Wasting Taxpayer Dollars on Supporting Foreign Partners

How’s Pro-Palestinian Protest Tsunami Sweeping the US Universities?

Commander of Special Unit of Israeli Forces Resigns

Iran Attack on Israel Humiliated Tel Aviv across World

US, Israeli Vessels Targeted in Yemeni Operations

France's Air Traffic Control Strikes Ground Flights across Europe

Transfer of US ATACMS Missiles to Ukraine Cannot Be Justified: Russian Envoy

US Secretly Shipped ATACMS Missiles to Ukraine

Germany to Resume UNRWA Funding

UNICEF: Over 14,000 Kids Killed in ‘Israel’s’ War on Gaza

“Israel’s” Rift: Ben-Gvir under Fire for ‘Lame’ Iran Tweet

Iranian FM: Attack on Isfahan More Like Toys than A Strike

PMU Targets “Eilat” Hours after Strike on Its Base

UN Secretary General Urges Azerbaijan, Armenia to Normalize Relations

Man Sets Self on Fire outside New York Court Where Trump Trial Underway

US Agrees to Withdraw Troops from Niger: Washington Post

Russia Says Ukrainian Drone Strike Killed Two in Belgorod

US Sanctions 3 China Firms on Giving Missile Tech to Pakistan

“Israeli” Military Analyst Describes Iranian Response as Apocalyptic