Investigation launched into vulnerabilities found within US Judiciary case file system

Investigation launched into vulnerabilities found within US Judiciary case file system

The United States Judiciary has announced an audit into its systems, following concerns its case file system has been compromised.


In making the announcement, the Judiciary said the Administrative Office of the US Courts was working with the Department of Homeland Security on a security audit relating to vulnerabilities in the Judiciary's Case Management/Electronic Case Files system (CM/ECF) that greatly risk compromising highly sensitive non-public documents, particularly sealed filings.


"An apparent compromise of the confidentiality of the CM/ECF system due to these discovered vulnerabilities currently is under investigation," it said. "Due to the nature of the attacks, the review of this matter and its impact is ongoing."


With the investigation ongoing, Judiciary said federal courts across the country will be adding new security procedures aimed at protecting highly sensitive confidential documents filed with the courts.


Moving forward, highly sensitive court documents filed with federal courts will be accepted for filing in paper form or via a "secure electronic device", such as a thumb drive, and stored in a "secure, stand-alone computer system". The documents will not be uploaded to CM/ECF. 


Filings not considered highly sensitive will continue to be sealed in CM/ECF "as necessary".


"The federal Judiciary's foremost concern must be the integrity of and public trust in the operation and administration of its courts," Secretary of the Judicial Conference of the United States James C. Duff said.

The Judiciary said following guidance from the Department of Homeland Security, its courts have suspended all national and local use of SolarWinds Orion products.


Earlier this w ..