Watch this CyberArk Labs webinar for a detailed analysis of the December 2024 cyberattack on the U.S. Treasury Department, which stemmed from a compromised BeyondTrust remote management solution. This incident reinforces the critical nature of privileged access, API and machine identity security and the risk associated with supply chain compromise.
Our expert speakers examine the root causes and lessons learned from the breach, including an in-depth analysis of the vulnerabilities, an attack chain reconstruction and actionable recommendations to help protect your organization.
Key Discussion Points:
- Timeline of the breach from Dec. 2 to what is known today
- Analysis of the two zero-day command injection vulnerabilities disclosed during investigation
- Implications of compromised unclassified data and educated speculation
- Best practices and mitigation strategies: API security and secrets management, vendor privileged access and rapid incident response
