By Andrew Blankstein, Michael Kosnar, Jonathan Dienst and Tom Winter -
NBC News
The United States Marshals Service was the victim of a cyber attack more than a week ago that compromised confidential information, according to federal authorities.
USMS spokesman Drew Wade acknowledged the
hack
in a statement.
“The affected system contains confidential law enforcement information, including legal process statements, administrative information, and personally identifiable information related to USMS subjects, third parties, and certain USMS employees,” he said.
Wade said the incident occurred on February 17, when the Marshals Service "discovered a ransomware
and data exfiltration event
that affected a single USMS system."
The hack against the Mexican Army revealed details about AMLO's health
Sept.
30, 202200:33
After the cyberattack was detected, the system was taken offline and the Justice Department launched a forensic investigation, according to Wade.
The official added that on February 22, when the agency informed senior department officials about the incident, "those officials determined that it was a major incident."
[A police operation against gangs in California leaves 26 subjects arrested]
This is an ongoing investigation, Wade said.
A senior law enforcement official familiar with the incident said the leak did not breach the database of the Witness Security Program, commonly known as the protected witness program.
The official added that no one in the witness protection program is in danger from the attack.
Jailers in Alabama accused of locking an inmate in a freezer to death
Feb 17, 202300:24
However, the official acknowledged that this was a significant incident and that confidential law enforcement information related to the Marshals Service investigations was breached.
The official said the agency has managed to find an alternative solution to the fugitive-tracking operation problems caused by the cyberattack.