Last week, multiple senior U.S. law enforcement officials reported that the U.S. Marshals Service experienced a security breach that compromised sensitive information. The breach occurred on February 17th, according to U.S. Marshals Service spokesperson Drew Wade, who acknowledged the incident in a statement. Wade stated that the affected system contained law enforcement sensitive information, including returns from legal processes, administrative information, and personally identifiable information pertaining to subjects of USMS investigations, third parties, and certain USMS employees.
Wade further explained that the Marshals Service discovered a ransomware and data exfiltration event affecting a stand-alone USMS system. The agency quickly disconnected the system from the network, and the Justice Department initiated a forensic investigation. The investigation is ongoing, and the agency has been able to develop a workaround to continue operations and efforts to track down fugitives.
After briefing senior department officials, Wade reported that “those officials determined that it constitutes a major incident.” The U.S. Marshals Service has not disclosed the number of individuals impacted by the breach or the exact type of information that was exposed. A senior law enforcement official, however, revealed that the breach did not involve the Witness Security Program database, commonly known as the witness protection program. The official emphasized that no one in the witness protection program is in danger because of the breach.
The official stated that the incident is significant because it affected law enforcement sensitive information pertaining to the subjects of Marshals Service investigations. “It’s not good, but we have developed a workaround so we can still continue our operations,” the official said.
The U.S. Marshals Service is one of the oldest law enforcement agencies in the United States, and its responsibilities include apprehending fugitives, protecting federal judges, transporting prisoners, and managing assets seized from criminals. This breach is the latest in a string of cyberattacks on government agencies and private companies, including the SolarWinds attack that impacted multiple federal agencies.
The U.S. government has recently increased efforts to address the growing threat of cyberattacks, including the establishment of a cybersecurity executive order and the appointment of a national cyber director. As the investigation into this breach continues, the U.S. Marshals Service and other law enforcement agencies will likely face increased scrutiny and pressure to prevent future incidents.
Hi,
Are you still in business?
I found a few errors on your site.
Would you like me to send over a screenshot of those errors?
Regards
Henry
(714) 500-7363