Data Breach Compromises Tens of Thousands of Travelers’ Images, License Plates

Data Breach Compromises Tens of Thousands of Travelers' Images, License Plates

A subcontractor of U.S. Customs & Border Protection transferred images of travelers and license plates to its network without CBP’s authorization or knowledge. He was subsequently hacked, and the information was compromised.

  • By Kaitlyn DeHaven
  • Jun 12, 2019

U.S. Customs & Border Protection (CBP) has announced a data breach has compromised tens of thousands of traveler’s information. According to the agency, a subcontractor transferred the images to its network “in violation of CBP policies and without CBP’s authorization or knowledge.” The subcontractor was subsequently hacked.

A CBP spokesperson said that the images contain fewer than 100,000 people in vehicles entering and exiting the United States “through a few specific lanes a single land border Port of Entry over a 1.5-month period.” The photos include drivers in their cars and the license plates of vehicles. No photos were obtained from any airport. Officials have also stated that no passport or other travel document photos were compromised. CBP said none of the image data had been identified on the dark web or internet as of Monday.

Dan Tuchler, CMO at SecurityFirst, said that the misuse of facial recognition technology as well as license plate tracking software is currently a contentious topic, and this breach only breeds more ground for the matter to be discussed.

“We don’t want to live in a police state,” Tuchler said. “With the theft of photos of people entering or exiting the country, will hackers use these photos in combination with other data to create problems for citizens and travelers? Once again it is a partner that was hacked. Every responsible organization needs to be vigilant and ensure that their partners are securing vital data.”

Interestingly enough, this breach occurred just as airlines and U.S. authorities are beginning to use facial recognition technology for customs, check-in, baggage drop, security, and boarding. In lieu of the breach, more opposition to the facial recognition technology may arise.

John Gunn, CMO of OneSpan, said that biometric technology is not inherently bad, but must be applied correctly to keep the misuse to a minimum.

“Biometric technology is too often misrepresented by the media and certain fanatics as a Big-Brother conspiracy,” Gunn said. “It is not a panacea; it is a developing technology that is imperfect and has weaknesses and vulnerabilities like every technological advance in our history, but the net sum gain of its use is indisputably positive.”

CBP said in a statement that the equipment involved in the breach has been removed, and Congress has been informed. While there is speculation, there is still no clear answer on which subcontractor was involved in the breach.

About the Author

Kaitlyn DeHaven is the Associate Content Editor for the Infrastructure Solutions Group at 1105 Media.

Featured

  • Survey: 48 Percent of Worshippers Feel Less Safe Attending In-Person Services

    Almost half (48%) of those who attend religious services say they feel less safe attending in-person due to rising acts of violence at places of worship. In fact, 39% report these safety concerns have led them to change how often they attend in-person services, according to new research from Verkada conducted online by The Harris Poll among 1,123 U.S. adults who attend a religious service or event at least once a month. Read Now

  • AI Used as Part of Sophisticated Espionage Campaign

    A cybersecurity inflection point has been reached in which AI models has become genuinely useful in cybersecurity operation. But to no surprise, they can used for both good works and ill will. Systemic evaluations show cyber capabilities double in six months, and they have been tracking real-world cyberattacks showing how malicious actors were using AI capabilities. These capabilities were predicted and are expected to evolve, but what stood out for researchers was how quickly they have done so, at scale. Read Now

  • Why the Future of Video Security Is Happening Outside the Cloud

    For years, the cloud has captivated the physical security industry. And for good reasons. Remote access, elastic scalability and simplified maintenance reshaped how we think about deploying and managing systems. Read Now

  • UL Solutions Launches Artificial Intelligence Safety Certification Services

    UL Solutions Inc., a global leader in safety science, today announced the launch of artificial intelligence (AI) safety certification services, enabling comprehensive assessments for evaluating the safety of AI-powered products. Read Now

  • ESA Announces Initiative to Introduce the SECURE Act in State Legislatures

    The Electronic Security Association (ESA), the national voice for the electronic security and life safety industry, has announced plans to introduce the SECURE Act in state legislatures across the country beginning in 2025. The proposal, known as Safeguarding Election Candidates Using Reasonable Expenditures, provides a clear framework that allows candidates and elected officials to use campaign funds for professional security services. Read Now

    • Guard Services
Most   Popular

New Products

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

  • QCS7230 System-on-Chip (SoC)

    QCS7230 System-on-Chip (SoC)

    The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge.