# US Court System Boosts Cyber Posture After Hack of Electronic Case Management Tool

The U.S. federal court system is taking significant steps to enhance its cybersecurity posture following a recent breach of its electronic case filing management system. The hack, which has left sensitive information vulnerable, has raised concerns about the potential for nation-state hackers and cybercriminals to exploit this weakness.

According to a report by Politico, the breach may have revealed the identities of confidential informants involved in criminal cases in several federal district courts. This sensitive information was stored on the compromised system, putting it at risk of being accessed or exploited by unauthorized parties.

In response to this threat, the Administrative Office of the United States Courts has announced that it is taking additional steps to strengthen protections for sensitive case documents. The office has been working closely with Congress, the Department of Justice, the Department of Homeland Security, and other partners in the executive branch to mitigate the risks and impacts of these cyberattacks.

"The federal government's judiciary is taking additional steps to strengthen protections for sensitive case documents in response to recent escalated cyberattacks of a sophisticated and persistent nature on its case management system," said the statement. "The Administrative Office of the United States Courts has continued to collaborate with Congress as well as the Department of Justice, the Department of Homeland Security and other partners in the executive branch to mitigate the risks and impacts of these cyberattacks."

Chief judges from the federal courts in the 8th Circuit were briefed on the hack during last week's judicial conference in Kansas City. Judge Robert J. Conrad, Jr., who oversees the Administrative Office of the U.S. Courts, was present at the briefing, according to a person familiar with the matter.

The breach has also raised concerns about the potential for foreign adversaries to disrupt court operations and gain strategic advantages. "Storing such sensitive documents in these long aged systems is a disaster in the making," said one public sector cybersecurity expert, who was granted anonymity to be candid. "What's surprising is that it doesn't happen even more often."

The Senate and House Judiciary Committees, along with representatives from the House and Senate Appropriations Committees and the Senate Judiciary Subcommittee on Federal Courts, received a staff-level briefing on this matter on July 23 and have requested a classified follow-up briefing in September.

In addition to the administrative steps being taken, experts warn that court systems are appealing targets for nation-state hackers and cybercriminals due to their sensitive nature. Many courts operate on outdated or under-resourced IT infrastructure, making them vulnerable entry points into broader government networks.

The Cybersecurity and Infrastructure Security Agency (CISA) has confirmed its involvement in monitoring reports of a potential compromise involving the federal judiciary's case management system. "CISA is monitoring reports of a potential compromise involving the federal judiciary's case management system," said Marci McCarthy, CISA director of public affairs. "We routinely share threat intelligence with judicial branch partners and stand ready to support as needed."

The need for improved cybersecurity in court systems has been highlighted by Judge Michael Y. Scudder, who chairs the Judicial Conference's IT Committee. In September, he warned of cybersecurity threats to the Judiciary and outlined steps being taken to address them.

In June, Judge Scudder told a House Judiciary subcommittee that the branch is continuing efforts to modernize its IT systems as more advanced cyber threats mount. The ongoing efforts to enhance cybersecurity in court systems are crucial in preventing disruptions to proceedings and protecting sensitive information from exploitation.

# Update

CISA officials have committed to supporting top vulnerability cataloging program, highlighting the importance of proactive measures to address emerging security risks.

As the federal judiciary continues to strengthen its cybersecurity posture, it is essential for all stakeholders to remain vigilant and take proactive steps to protect against cyber threats. The future of court operations depends on our collective ability to prioritize cybersecurity and ensure that sensitive information remains secure.