Cyber Incident Victim: US Federal Court System

On or around September 1, 2025, the Administrative Office of the U.S. Courts experienced a cybersecurity incident targeting the PACER (Public Access to Court Electronic Records) system, the centralized repository for federal court documents. The breach compromised the electronic filing infrastructure used by all levels of the federal judiciary, disrupting access to court records and temporarily halting new electronic submissions across multiple districts. Attackers exploited vulnerabilities in the system to gain unauthorized access, though the specific technical vectors and initial intrusion methods were not publicly detailed in immediate disclosures. The incident caused widespread operational disruptions, delaying court proceedings and restricting public access to case documents during the initial days of the attack. Court personnel were directed to revert to manual filing processes as containment measures began.

The Administrative Office of the U.S. Courts activated its incident response protocol, collaborating with the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) and the FBI to investigate the breach’s scope and origin. Forensic teams worked to isolate affected systems and restore secure access to PACER, prioritizing the integrity of sensitive legal documents and sealed case materials. While no explicit ransom demands or data destruction were initially reported, the incident raised concerns about potential exposure of confidential filings and personal identifiable information within court records. Recovery efforts focused on system hardening and credential resets, with courts gradually resuming normal operations over subsequent weeks. The breach prompted congressional inquiries into the judiciary’s cybersecurity preparedness and long-term modernization needs for critical court infrastructure.