U.S. Customs and Border Protection said that as of Monday no traveler or license plate image data accessed during a May 31 cyber attack has appeared on the dark web or internet.
According to CBP, a subcontractor transferred copies of traveler and license plate images to their company network which was subsequently breached.
The subcontractor transferred the images without the agencys knowledge or authorization, CBP said.
CBP has reached out to members of Congress, other law enforcement agencies, and cyber security entities as part of its investigation of the incident. The CBPs Office of Professional Responsibility is also involved in the investigation.
House to Hold First Hearing on Mueller Report
The agency said the subcontractor “violated mandatory security and privacy protocols outlined in their contract.
“Government use of biometric and personal identifiable information can be valuable tools only if utilized properly. Unfortunately, this is the second major privacy breach at [the Department of Homeland Security] this year. We must ensure we are not expanding the use of biometrics at the expense of the privacy of the American public. I intend to hold hearings next month on Homeland Securitys use of biometric information,” Rep. BennRead More – Source