Russian Hackers Target US Federal Court System - Report

Alleged Russian Involvement in PACER Data Breach

Reports indicate the Russian government may be responsible for a recent data breach impacting the U.S. court filing system, PACER. This information was published by The New York Times.

The newspaper, referencing unnamed sources, stated Russia bears at least partial responsibility for the cyberattack. Specific details regarding which branch of the Russian government is implicated were not disclosed.

Focus of the Hack

According to the article, the hackers specifically targeted “midlevel criminal cases” within the New York City area and other jurisdictions. Their searches included cases involving individuals with Russian and Eastern European surnames.

The compromised system potentially exposed the identities of confidential informants. These identities are typically redacted from public records, creating a risk of retaliation from those they are assisting law enforcement in apprehending.

Data Potentially Compromised

Politico previously reported the breach into the federal judiciary’s electronic case filing system. Stolen data may encompass sealed criminal dockets, indictments, arrest warrants, and other non-public documents.

Some documents may never have been intended for public release.

Official Confirmation and Response

The Administrative Office of the U.S. Courts confirmed the cyberattack on August 7th through an official statement. This agency oversees the entire U.S. federal court system.

A memo circulated to Justice Department officials, clerks, and chief judges highlighted that “persistent and sophisticated cyber threat actors” had successfully compromised sealed records. The memo emphasized the URGENT nature of the situation and the need for immediate action.

Past Incidents

This incident may not represent Russia’s initial attempt to target the U.S. federal court system.

In 2020, a prolonged Russian cyberattack exploited vulnerabilities in SolarWinds software. This software is widely used by both large technology companies and government agencies.

The attack involved a compromised software update, granting Russian government hackers backdoor access to the networks of SolarWinds customers.

This widespread hack previously affected several U.S. government departments, including PACER, resulting in the theft of sealed court documents.

Ongoing Security Measures

The U.S. Courts stated on August 7th that they are actively “enhancing security of the system and to block future attacks.”

Prioritizing efforts to mitigate the impact on litigants is also underway.