IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Cyber attack on US court system being investigated, DoJ confirms

The early 2020 attack, publicly disclosed for the first time this week, is thought to have had a "staggering effect" on the department and other agencies

The US Justice Department has confirmed it is currently investigating a cyber security breach in the federal court system dating back to early 2020.

The system “faced an incredibly significant and sophisticated cyber security breach” that imposed “lingering impacts on the department and other [federal] agencies”, the department said.

It is the first public disclosure of the attack that is now more than two years old and separate from the massively disruptive SolarWinds Orion attack that was conducted by Russia-linked state-sponsored hackers.

The comments were made at a hearing on the oversight of the Justice Department National Security Division (NSD), by House Judiciary Committee Chair Jerrold Nadler on Thursday.

Nadler said the Committee “recently learned” about the attack in question, a timeline the Democrat-party representative for New York in Congress later clarified to be March 2022.

Responding to questioning from Nadler at the hearing, Assistant Attorney General for National Security Matthew Olsen said the NSD will provide updates to the Committee as the investigation continues.

Olsen later said that the impact of the cyber security breach on the federal court system did not affect any investigations of other cases that he could think of, despite an anonymous aide speaking to Politico, saying the “sweeping impact” it had on the department was “staggering”.

The breach discussed this week may refer to a disclosure on 6 January 2021 regarding a security incident affecting the judiciary’s case filing system, which “greatly” risked compromising “highly sensitive non-public documents”.

Following the incident, enhanced security procedures were introduced to the process. The compromised electronic filing system was not to be used and instead, highly sensitive documents were only filed in paper form or via a “secure electronic device, such as as a thumb drive, and stored in a secure standalone computer system".

It's currently unclear who is responsible for the early 2020 cyber attack and the full details of the impact on the department and other agencies are also unknown at this time.

Despite this, Olsen said his team is primarily tasked with investigating incidents conducted by foreign entities, usually involving countries such as Russia, China, Iran, and North Korea.

The US government has indicated that it has taken cyber security even more seriously in recent times, especially at a federal level, following a number of high-profile incidents in recent years.

The Biden administration classified ransomware attacks in the same category as terrorist incidents following the attack on Colonial Pipeline last year.

All federal agencies have also been told that they must patch their systems against a lengthy list of the most-exploited security vulnerabilities to minimise the potential impact of an attack on government processes.

Featured Resources

The Total Economic Impact™ Of Turbonomic Application Resource Management for IBM Cloud® Paks

Business benefits and cost savings enabled by IBM Turbonomic Application Resource Management

Free Download

The Total Economic Impact™ of IBM Watson Assistant

Cost savings and business benefits enabled by Watson Assistant

Free Download

The field guide to application modernisation

Moving forward with your enterprise application portfolio

Free Download

AI for customer service

Discover the industry-leading AI platform that customers and employees want to use

Free Download

Most Popular

Why convenience is the biggest threat to your security

Why convenience is the biggest threat to your security

8 Aug 2022
Google is now spending a staggering amount on blockchain
Business strategy

Google is now spending a staggering amount on blockchain

17 Aug 2022
UK water supplier confirms hack by Cl0p ransomware gang

UK water supplier confirms hack by Cl0p ransomware gang

16 Aug 2022