In this month’s major breach of U.S. Marshals Service computer systems with ransomware, hackers stole sensitive and personally identifiable data about agency employees and the targets of investigations, an agency spokesman said Tuesday.
The hacked system was disconnected from the network shortly after the release and the stolen data was discovered on February 17. The Department of Justice determined that there was a major incident and opened an investigation while the Marshals worked “quickly and effectively,” to reduce the risk involved. with publishing, agency spokesman Drew Wade said Tuesday.
The hack was first reported by NBC News.
The incident is the latest example of cybercriminals targeting government agencies in ransomware plots and raises questions about the Justice Department’s cybersecurity protocols.
February 17 was also when CNN reported that the FBI’s computer system had been breached. An unnamed source was quoted as saying the system was located in the FBI’s New York field office. Asked about the outage, the bureau issued a statement calling the outage “an isolated incident that has existed.” It declined further comment, including when the outage occurred and whether ransomware was involved.
Ransomware attacks have become the world’s most serious cyber security problem. They have crippled everything from the UK postal service to Ireland’s national health network to the Costa Rican government. Schools, hospitals and local governments are the targets.
The FBI and international law enforcement officials won a victory last month when they disrupted, at least temporarily, a prolific ransomware gang, saving them a potential $130 million in ransom payments.
In ransomware attacks, organized gangs break into computer networks and spread crippling malware by encrypting data. But before activating the ransomware they steal the data. Criminals can then hold data hostage even if the target quickly restores the affected network with backup data.
The hacked US Marshals system contained sensitive law enforcement information and personally identifiable information about the subject of the investigation and certain US Marshals employees, the agency said. It is tasked with tracking fugitives, transporting federal prisoners, protecting witnesses and providing court security.
In May 2021, hackers targeted the largest fuel pipeline in the US, causing the operator to briefly shut down and make a multi-million dollar ransom payment, which was later returned by the federal government.
A hacker claimed in December to have breached the FBI’s outreach program that shares sensitive information about national security and cybersecurity threats with public and private officials who run critical US infrastructure.
Learn how to navigate and strengthen trust in your business with The Trust Factor, a weekly newsletter that examines what leaders need to succeed. Log in here.