Tech

U.S. Marshals Service had data on criminal investigations stolen by ransomware group

The attack happened earlier this month.

Photo of Mikael Thalen

Mikael Thalen

U.S. Marshals standing on roof

The U.S. Marshals Service (USMS) was targeted by a ransomware group earlier this month that resulted in “sensitive information” being compromised.

Featured Video

As first reported by NBC News on Monday evening, multiple senior U.S. law enforcement officials revealed that data had been exfiltrated without authorization from a standalone system on Feb. 17.

U.S. Marshals Service spokesperson Drew Wade confirmed that the affected system contained “law enforcement sensitive information, including returns from legal process, administrative information, and personally identifiable information pertaining to subjects of USMS investigations, third parties, and certain USMS employees.”

A source did stress, however, that the breach did not result in the exposure of data linked to what is commonly referred to as the witness protection program.

Advertisement

Following the discovery of the breach, the system was isolated from its network. The Justice Department, which labeled the attack as “a major incident,” is currently carrying out a forensic investigation.

It remains unclear which strain of ransomware was involved and whether a prominent cybercrime group was responsible.

No information has been provided about over whether the group has threatened to release the data to the public, an increasingly common tactic designed to force victims to pay a hefty ransom.

Advertisement
web_crawlr
We crawl the web so you don’t have to.
Sign up for the Daily Dot newsletter to get the best and worst of the internet in your inbox every day.
Sign up now for free
 
The Daily Dot