DRJ Fall 2019

Conference & Exhibit

Attend The #1 BC/DR Event!

Summer Journal

Volume 32, Issue 2

Full Contents Now Available!

Tuesday, 11 June 2019 14:48

Federal Photos Filched in Contractor Breach

Data should never have been on subcontractor's servers, says Customs and Border Protection.
 

Photos used by US Customs and Border Protection (CBP) in an effort to protect travelers have been taken in an attack against a federal subcontractor. Officials confirmed the compromise, which they described as part of a malicious cyberattack.

While the agency declined to give details about the photos accessed by the attacker, the subcontractor is known to maintain databases of photos that include passport and visa photos, license plate images, and images from facial recognition systems.

According to the agency, a subcontractor transferred CBP data to its network, which was subsequently hacked. "The issue with subcontractors is that you can't completely control how they secure their network," says Pierluigi Stella, CTO of Network Box USA. "You can ask for certifications, financials, controls, and attestations, but there is always a limit to how much you can demand."

...

https://www.darkreading.com/attacks-breaches/federal-photos-filched-in-contractor-breach/d/d-id/1334927