New Threat Research: Uncovering Adversarial LDAP Tradecraft

Read Threat Research

Search

Perceptics Breach Farther Reaching than Previously Believed

Boris Bullet-Dodger: A spokesman for Customs and Border Protection (CBP) announced that an unnamed subcontractor of CBP suffered a data breach which exposed photos of travelers.  Although CBP did not wish to name the subcontractor, the title of the Word document which was sent out to media outlets was named, “CBP Perceptics Public Statement.”  Perceptics was compromised by a hacker calling themselves “Boris Bullet-Dodger” last month and was made public when Boris posted screen captures of internal documents online.  According to the statement from CBP, Perceptics copied portions of CBP’s photo database without CBP’s knowledge or authorization.  The breach did not compromise all of the photos contained in CBPs database.  Less than 100,000 photos of travelers and their license plates were exposed.  The photos only came from several lanes at a single point of entry, which was not identified, over a one-and-a-half-month period.  CBP officials did specify though that no airline passengers were involved as it was a land-based entry point and that no identifying details such as passports were included. So far Boris has not published any photos online nor has he made an offer to sell further documents from Perceptics.

Analyst Notes

It is possible that with all of the attention which Boris is receiving for the breach that he will opt for lining up a buyer in private to avoid attention from law enforcement officials.