More fallout from the Solar Winds hack

After last month’s revelation that the federal court system was among the victims of the Solar Winds cyberhack, leaving thousands of sensitive documents in the hands of Russian hackers, members of Congress are now demanding answers about the extent of the fallout. As one story notes:

Senators Richard Blumenthal, Dianne Feinstein, Patrick Leahy, Dick Durbin, Sheldon Whitehouse, Amy Klobuchar, Chris Coons, Mazie Hirono, and Cory Booker all signed on to a letter to the chief information officer at the Department of Justice and associate director of the administrative office of the U.S. Courts on Jan. 20 demanding a hearing on the changes and the potential access of court documents by the hackers.

“We are alarmed at the potential large-scale breach of sensitive and confident records and communications held by the DOJ and AO, and write to urgently request information about the impact and the steps being taken to mitigate the threat of this intrusion,” the senators wrote.

It’s not immediately clear to me why all of the signatories are Democratic senators. Perhaps it’s more pointless partisanship from a deeply dysfunctional Senate Judiciary Committee. But cybersecurity for the courts should be a bipartisan concern, and one can only hope that it will be treated as such.

The Administrative Office of the U.S. Courts has alraedy announced a plan to maintain sensitive filings on paper for the foreseeable future. We’ll see what develops in the coming weeks.

 

Cybersecurity breach affected federal courts

The SolarWinds cybersecurity breach that affected several federal agencies and private tech companies last month apparently also infiltrated the federal court system, according to reports. The Administrative Office of the U.S. Courts yesterday announced additional safeguards to protect sensitive court records. According to the AO’s press release,

Under the new procedures announced today, highly sensitive court documents (HSDs) filed with federal courts will be accepted for filing in paper form or via a secure electronic device, such as a thumb drive, and stored in a secure stand-alone computer system. These sealed HSDs will not be uploaded to CM/ECF. This new practice will not change current policies regarding public access to court records, since sealed records are confidential and currently are not available to the public.

Shades of the cyberattack that hit the Texas courts earlier this year. That involved ransomware, but it equally exposed the courts’ vulnerabilities involving modern technology