Harris County Juvenile Probation Department suffered a ransomware attack in January 2024 affecting case management systems for approximately 12,500 juvenile offenders. CJIS-connected data exposure triggered FBI notification.
RDP brute-force attack against an unpatched, internet-facing server succeeded in gaining foothold. Lateral movement across flat county network gave attacker access to juvenile case management database before encryption.
Sentinel ($89/ep/mo) — 24/7 SOC + SIEM. Fortress ($109/ep/mo) — Sentinel + EDR management + vulnerability management. Command ($129/ep/mo) — Fortress + vCISO + compliance mapping + IR plan. See full tier comparison →
| Regime | Standard / Citation | Gap Identified |
|---|---|---|
| CJIS | CJIS SP v6.0 §5.5 | Access control — RDP directly internet-accessible violates CJIS remote access requirements |
| CJIS | CJIS SP v6.0 §5.3 | Incident response — CJIS incident reporting to FBI CJIS Division required within defined timeline |
| TDPA | Tex. B&C Code §521.053 | Juvenile PII breach notification obligations triggered |
CoreRecon cites verifiable public sources only. No speculation on unverified attribution is published. Threat actor attribution appears only where publicly confirmed by law enforcement or the organization.
Free $2,500 security posture assessment for Texas organizations. We map your gaps against the same attack vectors used in this incident. No contract, no commitment.