Yazılar

US cybersecurity firm F5 breach linked to Chinese state-backed hackers, sources say

/in /tarafından

A breach at U.S.-based cybersecurity company F5 has been attributed to state-backed hackers from China, according to two people familiar with the investigation. The revelation comes a day after U.S. officials warned that federal networks using F5 products were being targeted by a “nation-state cyber threat actor.”

Sources told Reuters that the hackers had been inside F5’s network for over a year, gaining access to sensitive files, including parts of the company’s source code and details about vulnerabilities that could be exploited to attack government and corporate systems.

The Cybersecurity and Infrastructure Security Agency (CISA) said the breach posed an imminent threat to U.S. federal networks and urged immediate patching and updates to F5 devices. Acting Director Madhu Gottumukkala warned that the same vulnerabilities could lead to “a catastrophic compromise of critical information systems” across sectors.

F5, which provides security and networking products to both public and private clients, has not commented on the attribution. The company previously confirmed unauthorized access to some internal systems but said its operations were unaffected.

Responding to the allegation, Chinese Embassy spokesperson Liu Pengyu said Beijing “opposes and combats hacking activities in accordance with the law” and criticized what it called “false information for political purposes.”

U.S. investigators are continuing to assess the full scope of the breach, which highlights the persistent cybersecurity risks facing key technology providers in both government and industry supply chains.

CISA Reports No Indication of Broader Impact from Treasury Department Cyber Breach

/in /tarafından

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) stated on Monday that there is “no indication” the recent cyber breach at the U.S. Treasury Department has affected any other federal agencies. This followed a report that Chinese hackers compromised several computers at the Treasury, stemming from a breach at cybersecurity contractor BeyondTrust.

While BeyondTrust confirmed that a limited number of its clients were affected, the company has not provided further details regarding which clients may have been impacted. The forensic investigation into the breach is still ongoing, and BeyondTrust has yet to confirm additional details about the scope of the attack.

Reports have suggested that the hackers specifically targeted the U.S. Treasury office responsible for administering economic sanctions, likely aiming to access information about Chinese entities under consideration for U.S. financial sanctions. This attack is part of an ongoing series of cyber incidents attributed to Chinese state-sponsored actors.

Republican lawmakers have called for a briefing on the incident. In response, Chinese Embassy spokesperson Liu Pengyu dismissed the claims, calling the reports “irrational” and part of “smear attacks” against China.