Los Angeles, CA – July 21, 2024 – The Los Angeles Superior Court suffered an unprecedented ransomware attack on Friday, July 19, 2024, resulting in the closure of all 36 courthouses in the county. The breach, which occurred in the early hours of the morning, necessitated the immediate disabling of nearly all network systems to contain the damage and protect sensitive information.
Details of the incident
The ransomware attack on the Los Angeles Superior Court began in the early hours of Friday, July 19, targeting internal and external systems, including the MyJuryDuty portal and case management system. The court’s cybersecurity department quickly detected the attack and shut down the network to prevent further damage. While this swift response was necessary, it caused a significant disruption to service, rendering critical systems inaccessible and impacting juror communications.
In response, the courts worked with the California Governor’s Office of Emergency Services and various law enforcement agencies to investigate the breach and assess the damage. A preliminary investigation indicates that no user data was compromised, but the investigation is ongoing. Despite the swift response, many systems remained offline, so court officials closed all courts on Monday, July 22, to allow additional time for IT professionals to safely restore operations.
Presiding Judge Samantha P. Jessner emphasized the Court’s significant investment in cybersecurity, which she said helped it quickly contain the attack. The Court plans to resume normal operations by Tuesday, July 23, after securing all systems. This incident highlights the constant threat of cyberattacks and the need for strong cybersecurity measures. The Court clarified that the attack is unrelated to the recent global disruptions caused by a faulty CrowdStrike update.
Ongoing response and recovery
Efforts continued throughout the weekend to restore and recover affected systems. As of Sunday evening, many critical systems remained offline. However, court officials remain optimistic that they will be up and running by Tuesday, July 23, 2024. This additional time is intended to allow the court’s expert team to focus on getting systems back online as quickly and safely as possible.
The Los Angeles Superior Court is working closely with the California Governor’s Office of Emergency Services and local, state and federal law enforcement agencies to investigate the incident and evaluate its impact. A preliminary investigation has found no evidence that any court user data was compromised.
Impact on court operations
The closures affected all 36 court facilities, temporarily halting court operations and services. Court websites, including the MyJuryDuty portal, displayed error messages indicating the extent of the disruptions. Court officials stressed their determination to restore services and resume operations as quickly as possible.
Authorities have stated that the ransomware attack on the Los Angeles Superior Court is unrelated to the recent global disruptions caused by a faulty CrowdStrike update that affected Windows systems around the world around the same time.
Cybersecurity measures
The court noted that the company’s significant investment in cybersecurity and increased staffing in the cybersecurity department were factors in the company’s rapid detection of the attack and its immediate response. This case highlights the importance of cybersecurity protection and the need for continuous vigilance against cyber threats.
About Los Angeles Superior Court
The Los Angeles Superior Court is the largest court in the United States, with more than 4,800 employees in 41 court facilities in 26 cities in Los Angeles County. The court serves more than 10 million residents.
