You lost US Customs Border data? You’re losing your government contracts…

Graham Cluley

You lost US Customs Border data? You're losing your government contracts...

You lost US Customs Border data? You're losing your government contracts...

Last month it was revealed that digital photos of “fewer than 100,000” travellers and vehicle license plates, captured as they made their way through a border crossing, had been stolen by hackers from the network of a company subcontracting for the United States Customs and Border Protection (CBP).

That wasn’t good.

Then it was revealed that the company concerned, Perceptics, shouldn’t have had the data on its network in the first place and that it had been copied onto their systems without the knowledge or authorisation or the CBP.

That definitely wasn’t good.

And then it came to light that the hackers hadn’t just scarpered off with the CBP data, but also some 400 GB of other files from Peceptics’ network including databases, spreadsheets, HR records, business plans, financial figures, presnetations, personal information, and even some Spice Girls MP3s.

Oh dear oh dear.

Perceptics slide
A screenshot of a Perceptics presentation made for CBP. Faces blurred by Motherboard. Source: Motherboard

How could things look any worse for Perceptics?

Well, as Drew Harwell at The Washington Post reports, the CBP has now suspended license plate-scanning company Perceptics from federal contracts:

The longtime maker of license-plate scanners and other surveillance equipment used along the U.S. border was suspended Tuesday from federal contracting by U.S. Customs and Border Protection officials, who cited “evidence of conduct indicating a lack of business honesty or integrity,” federal records show.

The rare punishment temporarily prevents the longtime contractor, Perceptics, from doing business with the federal government and could land the company on a years-long government blacklist.

There’s no mincing of words here. “Evidence of conduct indicating a lack of business honesty or integrity”. That’s pretty damning of Perceptics.

Talk about bad optics.

Make sure that you don’t have data you don’t need or shouldn’t have on your network, and ensure that you have a layered defence in place to reduce the chances that hackers are able to compromise your systems and steal sensitive information.

To hear more about this case, be sure to check out the episode of “Smashing Security” podcast we released earlier this month:

Smashing Security #132: 'CBP cyber attack, an iPhone privacy boost, and Twitter list abuse'

Listen on Apple Podcasts | Google Podcasts | Other... | RSS
More episodes...

Graham Cluley Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, or drop him an email.

One Reply to “You lost US Customs Border data? You’re losing your government contracts…”

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.




Stay informed!

Join thousands of others by signing-up for the free “GCHQ” newsletter, containing the latest news and tips from security expert Graham Cluley.

Name:

Email:

Yes, I would like to subscribe to email updates from Graham Cluley. I know it’s easy to unsubscribe if I ever change my mind.