<p>A hack into the Office of the Comptroller of the Currency discovered in February has been deemed a “major information security incident” in a notification to Congress, the agency said Wednesday.</p>
Introduction to Malware Binary Triage (IMBT) Course
Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor.
Enroll Now and Save 10%: Coupon Code MWNEWS10
Note: Affiliate link – your enrollment helps support this platform at no extra cost to you.
<p>The hackers gained access to top officials’ emails that contained highly sensitive information about the financial condition of federally regulated financial institutions, OCC said in a <a href=“OCC Notifies Congress of Incident Involving Email System | OCC”>published notice</a>. The office — which is part of the Treasury Department — charters, regulates and oversees national banks and related federal savings associations.</p>
<p>The OCC on Feb. 11 discovered “unusual interactions between a system administrative account in its office automation environment and OCC user mailboxes,” and confirmed the next day the activity was unauthorized, it said.</p>
<p>Bloomberg News <a href=“https://www.bloomberg.com/news/articles/2025-04-08/hackers-spied-on-100-bank-regulators-emails-for-over-a-year?utm_source=website&amp;utm_medium=share&amp;utm_campaign=copy”>first reported</a> the hack Tuesday, noting the intruders gained access to about 103 bank regulators’ emails for over a year and said the hack accessed emails as far back as May 2023.</p>
<p>“The confidentiality and integrity of the OCC’s information security systems are paramount to fulfilling its mission,” acting Comptroller of the Currency Rodney Hood said in a statement. “I have taken immediate steps to determine the full extent of the breach and to remedy the long-held organizational and structural deficiencies that contributed to this incident.”</p>
<p>The incident comes amid a separate Chinese <a href=“Chinese-sponsored hackers accessed Treasury documents in ‘major incident’ - Nextgov/FCW”>hack into Treasury Department systems</a> disclosed last year that granted the attackers access to then-Treasury Secretary Janet Yellen’s computer, as well as other offices holding highly sensitive information.</p>
<p>OCC is investigating the incident and is using an unnamed third-party cybersecurity tool for forensics efforts, it said.</p>
Article Link: Treasury regulatory office reports ‘major information security incident’ - Nextgov/FCW