Cyberattack hits US treasury and commerce departments

Zero-day attack
(Image credit: Shutterstock) (Image credit: Shutterstock.com)

The US treasury and commerce departments have been hit by a serious cyberattack, with fingers already being pointed in Russia’s direction. The US Government convened a National Security Council meeting in the aftermath of the attack, with fears growing that other government departments may also be affected.

Reports indicate that the attack may be the work of the state-sponsored hacking group known as APT29, or Cozy Bear, which was confirmed as the attacker behind the recent FireEye breach. The group has also been blamed for previous attacks on US Government agencies, as well as recent hacks at organizations researching Covid-19.

So far, not much is known about the attack on the US treasury and commerce departments, although all federal civilian agencies have been told to disconnect from SolarWinds, a computer network tool that is being exploited by the attackers.

Where's your proof?

Unsurprisingly, Russia has been bullish in rejecting US allegations. The country’s foreign ministry described accusations that it was responsible for the attack as “baseless.”

“The Russian Federation actively promotes bilateral and multilateral cybersecurity agreements,” Russia’s US Embassy wrote on Facebook. “In this regard, we would like to remind our American colleagues of the initiative put forward by President Vladimir Putin on September 25 on a comprehensive program of measures to restore Russian-US cooperation in the field of international information security. We have received no reply from Washington. Many of our other suggestions to start constructive and equal dialogue with the US remain unanswered.”

Despite Russia’s protestations, Microsoft has also supported the claim that a nation-state is likely to be behind the recent attack. Cyberwarfare is now employed by most major countries, whether for intelligence gathering or outright disruption.  

Via the BBC

Barclay Ballard

Barclay has been writing about technology for a decade, starting out as a freelancer with ITProPortal covering everything from London’s start-up scene to comparisons of the best cloud storage services.  After that, he spent some time as the managing editor of an online outlet focusing on cloud computing, furthering his interest in virtualization, Big Data, and the Internet of Things. 

Latest in Security
healthcare
Software bug meant NHS information was potentially “vulnerable to hackers”
A hacker wearing a hoodie sitting at a computer, his face hidden.
Experts warn this critical PHP vulnerability could be set to become a global problem
botnet
YouTubers targeted by blackmail campaign to promote malware on their channels
A close-up of a phone screen showing the Telegram, Signal and WhatsApp apps
Agentic AI has “profound” issues with security and privacy, Signal President says
botnet
Another top security camera maker is seeing devices hijacked into botnet
Bluetooth
Top Bluetooth chip security flaw could put a billion devices at risk worldwide
Latest in News
Apple's Craig Federighi demonstrates the iPhone Mirroring feature of macOS Sequoia at the Worldwide Developers Conference (WWDC) 2024.
Report: iOS 19 and macOS 16 could mark their biggest design overhaul in years – and we have one request
Google Gemini Calendar
Gemini is coming to Google Calendar, here’s how it will work and how to try it now
Lego Mario Kart – Mario & Standard Kart set on a shelf.
Lego just celebrated Mario Day in the best way possible, with an incredible Mario Kart set that's up for preorder now
TCL QM7K TV on orange background
TCL’s big, bright new mid-range mini-LED TVs have built-in Bang & Olufsen sound
Apple iPhone 16e
Which affordable phone wins the mid-range race: the iPhone 16e, Nothing 3a, or Samsung Galaxy A56? Our latest podcast tells all
An image of a Jackbox Games Party Pack
Jackbox games is coming to smart TVs in mid-2025, and I can’t wait to be reunited with one of my favorite party video games