The U.S. Federal Judiciary confirmed a cyberattack on its electronic case management systems, which host confidential court documents. While most documents are public, sealed filings containing sensitive information, including identities of confidential informants, were exposed. The attack targeted CM/ECF and PACER, the backbone of federal court document management. The Judiciary is enhancing security measures to block future attacks and mitigate the impact on litigants. The breach was discovered on July 4, 2025, and involved sophisticated and persistent cyber threats.
TPRM report: https://www.rankiteo.com/company/administrative-office-of-the-united-states-courts
"id": "adm805080825",
"linkid": "administrative-office-of-the-united-states-courts",
"type": "Cyber Attack",
"date": "8/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Judicial',
'location': 'United States',
'name': 'U.S. Federal Judiciary',
'type': 'Government Agency'}],
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['sensitive case documents',
'identities of confidential '
'informants']},
'date_detected': '2025-07-04',
'description': 'The U.S. Federal Judiciary confirms that it suffered a '
'cyberattack on its electronic case management systems hosting '
'confidential court documents and is strengthening '
'cybersecurity measures.',
'impact': {'data_compromised': ['sensitive case documents',
'identities of confidential informants'],
'identity_theft_risk': 'High',
'operational_impact': 'Mitigation efforts with courts to reduce '
'impact on litigants',
'systems_affected': ['CM/ECF', 'PACER']},
'investigation_status': 'Ongoing',
'post_incident_analysis': {'corrective_actions': 'Strengthening cybersecurity '
'measures'},
'references': [{'source': 'Politico'}, {'source': 'BleepingComputer'}],
'response': {'communication_strategy': 'Published statement',
'containment_measures': 'Stricter access controls',
'enhanced_monitoring': True,
'incident_response_plan_activated': True,
'recovery_measures': 'Working with courts to mitigate impact on '
'litigants',
'remediation_measures': 'Enhancing security of the system'},
'title': "Cyberattack on U.S. Federal Judiciary's Electronic Case Management "
'Systems',
'type': 'Cyberattack'}