Even as United States Homeland Security officials have attempted to downplay the impact of a security intrusion that reached deep into the network of a federal surveillance contractor, secret documents, handbooks, and slides concerning surveillance technology deployed along U.S. borders are being widely and openly shared online.
A terabyte of torrents seeded by Distributed Denial of Secrets (DDOS), journalists dispersing records that governments and corporations would rather nobody read, are as of writing, being downloaded daily.
As of this week, that includes more than 400 GB of data stolen by an unknown actor from Perceptics, a discreet contractor based in Knoxville, Tennessee, that works for Customs and Border Protection (CBP) in the country and is, regardless of whatever U.S. officials say, right now the epicentre of a major U.S. government data breach.
The files include powerpoint presentations, manuals, marketing materials, budgets, equipment lists, schematics, passwords, and other documents detailing Perceptics’ work for CBP and other government agencies for nearly a decade.
Tens of thousands of surveillance photographs taken of travellers and their vehicles at the U.S. border are among the first tranches of data to be released.
Reporters are digging through the dump and already expanding our understanding of the enormous surveillance apparatus that is being erected on our border.
We have added the 2nd tranche of #Perceptics data, including manufacturing, HR and LPR documents. A small number of documents related to medical insurance have been removed from the browsable version of the HR files https://t.co/72wpNI9vYd https://t.co/mfWev7KbW6
— Distributed Denial of Secrets (@DDoSecrets) June 17, 2019
In a statement last week, CBP insisted that none of the image data had been identified online, even as one headline declared, “Here Are Images of Drivers Hacked From a U.S. Border Protection Contractor.”
“The breach covers a huge amount of data which has, until now, been protected by dozens of Non-Disclosure Agreements and the (b)(4) trade-secrets exemption which Perceptics has demanded DHS apply to all Perceptics information,” DDOS team member Emma Best, who often reports for the Freedom of Information site MuckRock, told Gizmodo.
(Best has also contributed reporting on WikiLeaks for Gizmodo.)
We have added – without redaction – the 4th tranche of #Perceptics data, including their inventory, sales and marketing data as well as years of presentations, projects, proposals with CBP, DEA, the Pentagon and Canada https://t.co/72wpNI9vYd https://t.co/mfWev7KbW6
— Distributed Denial of Secrets (@DDoSecrets) June 20, 2019
Despite the government’s attempt to downplay the breach, the Perceptics files, she said, “include schematics, plans, and reports for DHS, the DEA, and the Pentagon as well as foreign clients.”
While the files can be viewed online, according to Best, DDOS has experienced nearly a 50 per cent spike in traffic from users who’ve opted to download the entire dataset.
“We’re making these files available for public review because they provide an unprecedented and intimate look at the mass surveillance of legal travel, as well as more local surveillance of turnpike and secure facilities,” Best said. “Most importantly they provide a glimpse of how the government and these companies protect our information—or, in some cases, how they fail to.”
Neither CBP nor Perceptics immediately responded to a request for comment.