The US Marshals Service Gets Hacked

Uploaded on 2023-03-03 in TECHNOLOGY--Hackers, GOVERNMENT-Law Enforcement, FREE TO VIEW, BUSINESS-Services-Transport & Travel

The US Marshals Service (USAMS)is an agency within the Department of Justice is responsible for pursuing fugitives and handling federal prisons in the US has been hit by a ransomware attack.  The federal agency, best known for its work in tracking down and capturing fugitives wanted by law enforcement  has notified the US government of the breach.

According to the sources, the USMS suffered a major ransomware attack two weeks ago that has compromised some of its most sensitive information, including law enforcement materials, the personal information of employees and the potential targets of federal investigations.

The US Department of Justice is investigating the breach and this cyber-attack is considered a "major incident" by officials and has hit a particular system within the service and the attack was discovered on 17th February "Shortly after that discovery, the USMS disconnected the affected system, and the Department of Justice initiated a forensic investigation," a spokesman told reporters.

The hackers were able to obtain administrative data, like personal information of certain employees, and about wanted fugitives, as well as information on unidentified third parties. The affected system also contained sensitive law enforcement information, including about ongoing legal procedures.

Officials at the Department of Justice, which oversees the USMS, deemed the cyber breach a "major incident" on Feb. 22, following a briefing by the Marshals Service. Under US policy, major incidents are considered to be "significant cyber incidents" deemed likely to result in demonstrable harm to US national security, foreign relations or the economy, or to the public confidence, civil liberties, or the public health and safety of the American people. 
Federal agencies are required to report "major incidents" to Congress within seven days of identification.

The Marshalls Department's recovery efforts are continuing, alongside a forensic investigation. "We are working swiftly and effectively to mitigate any potential risks as a result of the incident," the spokesman said. 

CBS:      BBC:      Reuters:     Guardian:     NBC:     Security Week:  

You Might Also Read:

US Federal Court Court IT Systems Breached:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

 

« Banning Ransomware Payments - Will It Work? 
New US National Cyber Security Strategy »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Thycotic

Thycotic

Thycotic prevents cyber attacks by securing passwords, protecting endpoints and controlling application access.

Original Software

Original Software

Original Software offers a test automation solution focused completely on the goal of effective software quality management.

MNCERT/CC

MNCERT/CC

MNCERT/CC is the national Computer Emergency Response Team for Mongolia.

BetterCloud

BetterCloud

BetterCloud puts IT in control of the modern workplace through user lifecycle management, data discovery, and IT and security automation purpose-built for SaaS.

TechVets

TechVets

TechVets is a non-for-profit helping UK veterans and service leavers retrain into Cyber Security and Technology jobs.

Redborder

Redborder

Redborder is an Open Source network visibility, data analytics, and cybersecurity Big Data solution that is scalable up to the needs of enterprise networks and service providers.

Keynetic Technologies

Keynetic Technologies

Keynetic focuses on developing cybersecurity solutions for Industry 4.0.

Portuguese Institute for Accreditation (IPAC)

Portuguese Institute for Accreditation (IPAC)

IPAC is the national accreditation body for Portugal. The directory of members provides details of organisations offering certification services for ISO 27001.

Route1

Route1

Route1 is an advanced provider of secure data intelligence solutions to drive your business forward.

ID R&D

ID R&D

ID R&D is an award-winning provider of AI-based facial liveness, document liveness, and voice biometrics.

Sweet Security

Sweet Security

Sweet Security delivers Runtime Attack Security for Cloud Workloads.

Karate Labs

Karate Labs

Karate is an open-source unified test automation platform combining API testing, API performance testing, API mocks & UI testing.

Health Sector Cybersecurity Coordination Center (HC3) - USA

Health Sector Cybersecurity Coordination Center (HC3) - USA

HC3 was created by the US Department of Health and Human Services to aid in the protection of vital, controlled, healthcare-related information.

Promptfoo

Promptfoo

Promptfoo helps developers and enterprises build secure, reliable AI applications.