U.S. Customs and Border Protection said that as of Monday no traveler or license plate image data accessed during a May 31 cyber attack has appeared on the dark web or internet.
According to CBP, a subcontractor transferred copies of traveler and license plate images to their company network which was subsequently breached.
The subcontractor transferred the images without the agency’s knowledge or authorization, CBP said.
CBP has reached out to members of Congress, other law enforcement agencies, and cyber security entities as part of its investigation of the incident. The CBP’s Office of Professional Responsibility is also involved in the investigation.
The agency said the subcontractor “violated mandatory security and privacy protocols outlined in their contract.
“Government use of biometric and personal identifiable information can be valuable tools only if utilized properly. Unfortunately, this is the second major privacy breach at [the Department of Homeland Security] this year. We must ensure we are not expanding the use of biometrics at the expense of the privacy of the American public. I intend to hold hearings next month on Homeland Security’s use of biometric information,” Rep. Bennie G. Thompson (D-MS), Chairman of the Committee on Homeland Security, said in a statement.
CBP said none of its own systems were compromised, and has taken all of the equipment related to the breach out of service.
No other information was available.
Please refresh this page for updates on this story. Details may change as more information becomes available.
Photo Credit: Getty Images
from NBC New York - Top Stories http://bit.ly/2KF8ITd
source IFTTT
