We use essential cookies to make our site work. With your consent, we may also use non-essential cookies to improve user experience, personalize content, customize advertisements, and analyze website traffic. For these reasons, we may share your site usage data with our social media, advertising, and analytics partners. By clicking ”Accept,” you agree to our website's cookie use as described in our Cookie Policy. You can change your cookie settings at any time by clicking “Preferences.”
Lead the Pack Awards 2025

CLICK HERE Know more about the Lead the Pack Awards 2025

TechDogs-"US Courts And Government Public Records Systems Filled With Vulnerabilities!"

Cyber Security

US Courts And Government Public Records Systems Filled With Vulnerabilities!

By Amrit Mehra

Updated on Tue, Oct 1, 2024

Overall Rating
In the age of digitalization, it’s not just businesses and professionals who are adapting to software applications and digital platforms. Even government agencies and public services are turning to such systems to enhance their productivity and streamline processes.

However, one cyber security researcher found that many of these platforms contain vulnerabilities that could enable bad actors to gain access to private data and sensitive information or edit statuses.


What Did The Cyber Security Researcher Find?

 

  • According to a blog post by Jason Parker, a software developer turned security researcher, US public records platforms used by courts and the government are filled with vulnerabilities.

  • These platforms, which are used to manage sensitive public records and legal documents, possess “critical security weaknesses” that could enable bad actors to access confidential information, manipulate legal filings and compromise personal data across several key systems.

  • Furthermore, bad actors can falsify registration databases and add, delete or modify official documents.

  • Overall, critical vulnerabilities were found in at least 19 commercial platforms, which are used by hundreds of courts, government agencies and police departments in the United States.

  • Platforms crucial to the judicial process are particularly at risk, as attackers with minimal technical skills could exploit vulnerabilities to breach security.

  • Multiple government agencies managing vital services are affected, with security flaws being more common than exceptional.

  • A notable example includes Georgia’s voter registration cancellation portal, where basic public information could be used to cancel voter registrations.

  • Key problems involve weak permission controls and poor validation of user inputs, allowing attackers to gain unauthorized access.

  • Predictable user IDs and manipulable data fields enable attackers to escalate access levels and compromise confidential records, including legal filings.

  • Georgia's voter portal flaw highlights how easily accessible personal information, like names and birthdates, can bypass authentication steps, jeopardizing citizens' rights and personal data.


What Platforms Were Affected?


These platforms and vendors include:
 

  • Inmate Management (BluHorse)

  • Court Case Management Plus (Tyler Technologies)

  • CMS360 (Catalis)

  • CaseLook (Henschen)

  • Brevard County’s in-house platform (Florida)

  • Hillsborough County’s in-house platform (Florida)

  • Lee County’s in-house platform (Florida)

  • Monroe County’s in-house platform (Florida)

  • Sarasota County’s in-house platform (Florida)

  • EFiling (Granicus)

  • GovQA (Granicus)

  • EZ-Filing v3 (Catalis)

  • EZ-Filing v4 (Catalis)

  • Maricopa County’s eFiling platform (Arizona)

  • Officer Profile Portal (NYPD)

  • eFiling (Granicus)

  • C-Track (Thomson Reuters)

  • GovQA (Granicus)

  • Voter Cancellation (Georgia Secretary of State)


TechDogs-"A Representative Image Depicting Cyber Security Vulnerabilities"


What Did Jason Parker Say?

 

  • Through the blog post, Jason Parker said, “These systems play a critical role in the judicial process, managing everything from legal cases to public records on behalf of government agencies.”

  • “However, beneath their essential functions, these platforms harbor vulnerabilities that could be exploited with ease — even by attackers with minimal technical expertise, thus underscoring the fragility of systems meant to safeguard our most sensitive public records.”

  • “These platforms are supposed to ensure transparency and fairness but are failing at the most fundamental level of cybersecurity.”

  • “If a voter’s registration can be canceled with little effort and confidential legal filings can be accessed by unauthorized users, what does it mean for the integrity of these systems?”

  • “Fixing these issues requires more than just patching a few bugs. It calls for a complete overhaul of how security is handled in court and public record systems.”

  • “Regular security audits and penetration testing should be standard practice, not an afterthought.”

  • “For now, the responsibility lies with the agencies and vendors behind these platforms to take immediate action, to shore up their defenses and to restore trust in the systems that so many people depend on.”


Do you think government systems and databases should be held to higher standards when it comes to protecting sensitive information and user data?

Let us know in the comments below!

First published on Tue, Oct 1, 2024

Amrit Mehra

Amrit Mehra

Senior Tech News Reporter TechDogs

Amrit Mehra is an experienced tech journalist with nearly a decade of reporting across IT, MarTech, and enterprise technology. He focuses on helping readers understand why tech developments matter—not just what they are. His writing stands out for its clarity, contextual relevance, and thoughtful simplicity. In addition to covering industry shifts, Amrit enjoys injecting humor and personality into his work, often through witty observations and meme-worthy takes that make tech more enjoyable to follow.

Liked what you read? That’s only the tip of the tech iceberg!

Explore our vast collection of tech articles including introductory guides, product reviews, trends and more, stay up to date with the latest news, relish thought-provoking interviews and the hottest AI blogs, and tickle your funny bone with hilarious tech memes!

Plus, get access to branded insights from industry-leading global brands through informative white papers, engaging case studies, in-depth reports, enlightening videos and exciting events and webinars.

Dive into TechDogs' treasure trove today and Know Your World of technology like never before!

Disclaimer - Reference to any specific product, software or entity does not constitute an endorsement or recommendation by TechDogs nor should any data or content published be relied upon. The views expressed by TechDogs' members and guests are their own and their appearance on our site does not imply an endorsement of them or any entity they represent. Views and opinions expressed by TechDogs' Authors are those of the Authors and do not necessarily reflect the view of TechDogs or any of its officials. While we aim to provide valuable and helpful information, some content on TechDogs' site may not have been thoroughly reviewed for every detail or aspect. We encourage users to verify any information independently where necessary.

Tags:

Cyber AttackCyber ThreatCybercrimeInternet SecuritynullCyber Security Researcher Jason Parker US Court Government Public Records Vulnerabilities

Join The Discussion

Trending TD NewsDesk

Join Our Newsletter

Get weekly news, engaging articles, and career tips-all free!

By subscribing to our newsletter, you're cool with our terms and conditions and agree to our Privacy Policy.

Home

Hot Topic: AI

News

Articles

Branded Insights

  • Dark
  • Light