Hackers attacked the US Marshals Service with ransomware and managed to steal information about subjects of investigations, according to a Department of Defense report.
While most ransomware attacks seem to target commercial interests, usually hitting companies the hackers suspect would be willing to pay a ransom, it's not always the case. Going after a US agency is not unheard of, but it's uncommon enough to raise some eyebrows.
A security incident took place on February 17 as the US Marshals Service discovered that one of its systems was compromised in a ransomware attack. Like in most of these types of attacks, hackers also went after the data before locking up the system, and they apparently managed to get their hands on some sensitive documents.
"The affected system contains law enforcement sensitive information, including returns from legal process, administrative information, and personally identifiable information pertaining to subjects of USMS investigations, third parties, and certain USMS employees," Drew Wade, chief of the Marshals Service public affairs office, told Reuters.
According to the US Marshals Service, the agency immediately informed the Department of Justice, which launched a forensic investigation. It's worth noting hackers managed to compromise only one device before the agency discovered the intrusion.
A CNN report also revealed that the leaked sensitive data didn't include actual information about the witness protection program, which is undoubtedly a relief to many state witnesses.
Authorities revealed no information about the type of ransomware used in the attack and didn't say which group could have been responsible for the intrusion.
tags
Silviu is a seasoned writer who followed the technology world for almost two decades, covering topics ranging from software to hardware and everything in between.
View all postsNovember 14, 2024
September 06, 2024