U.S. Marshals Service Struck by ‘Ransomware and Data Exfiltration Event’

The U.S. Marshals Service has experienced a ransomware-related incident.

NBC News reported that U.S. Marshals Service spokesperson Drew Wade said in a statement that on Feb. 17, authorities found “a ransomware and data exfiltration event affecting a stand-alone USMS system.”

“Shortly after that discovery, the USMS disconnected the affected system, and the Department of Justice initiated a forensic investigation,” Wade noted, according to CBS News.

“The affected system contains law enforcement sensitive information, including returns from legal process, administrative information, and personally identifiable information pertaining to subjects of USMS investigations, third parties, and certain USMS employees,” Wade noted, according to reports.

Senior department officials briefed on the breach ruled “that it constitutes a major incident,” Wade noted.

NBC News reported that a source said that the situation did not impact the database pertaining to the Witness Security Program, widely known as the witness protection program.

“The mission of the U.S. Marshals Service is to enforce federal laws and provide support to virtually all elements of the federal justice system by providing for the security of federal court facilities and the safety of judges and other court personnel; apprehending criminals; exercising custody of federal prisoners and providing for their security and transportation to correctional facilities; executing federal court orders; seizing assets gained by illegal means and providing for the custody, management, and disposal of forfeited assets; assuring the safety of endangered government witnesses and their families; and collecting and disbursing funds,” according to the agency’s website.

Reporting from The Blaze.