In February of 2008, two backup tapes containing data maintained by the U.S. Secret Service were left behind on a DC Metrorail. Now, nearly five years after the fact, the Department of Homeland Security’s Office of Inspector General (DHS-OIG) is launching an investigation into the incident.
According to a statement from the US Secret Service (USSS), the tapes were not marked or otherwise identifiable in any way and are “…protected by multiple layers of security. They could not be accessed without the proper equipment, applications and encoding.”
That remains to be seen as the USSS isn’t really getting into details about the layered protections, but one has to hope they are strong, because the tapes are still missing. One has to ask though, is the encryption on the tapes strong enough to deal with decoding techniques used in 2012?
They’d better be, as according the sources cited by CNN, the tapes “…contained very sensitive Secret Service personnel and investigative information, and if accessed could be highly damaging…”
Further, Fox News reports that:
Sources said the “personally identifiable information” — or “PII,” in government-speak — on the tapes includes combinations of the following: Social Security Numbers; home addresses; information about family members; phone numbers; dates of birth; medical information; bank account numbers; employment information; driver’s license numbers; passport numbers; and any biometric information on file with the Secret Service.
Another source said the tapes also contained backup case file information from computers at Secret Service headquarters. The tapes contained a “mishmash of everything” from Secret Service computers because it was part of a now-outdated “disk shuffling” system used to transfer information between Secret Service computers and the off-site backup facility, according to two sources.
The Secret Service however, maintains that no lives were placed at risk by the data loss, and that no fraud has been committed as a result. They also maintain that the DHS-OIG’s office was notified about the loss at the time of the incident, something that unnamed sources denied when speaking to FOX News.
“USSS reached out to Metro police and asked if they had found the [tapes], which they hadn’t. And then they didn’t even file a police report,” an unnamed source told Fox News.
“They didn’t report it to anyone, they didn’t inform the people whose information had been lost — they did nothing.”
The lost tapes inncident is just one of 13 separate investigations that the DHS-OIG has initiated against the USSS. The final report is due next year.
More from Steve Ragan
- Anonymous Claims Attack on IP Surveillance Firm Brickcom, Leaks Customer Data
- Workers Don’t Trust Employers with Personal Data: Survey
- Root SSH Key Compromised in Emergency Alerting Systems
- Morningstar Data Breach Impacted 184,000 Clients
- Microsoft to Patch Seven Flaws in July’s Patch Tuesday
- OpenX Addresses New Security Flaws with Latest Update
- Ubisoft Breached: Users Urged to Change Passwords
- Anonymous Targets Anti-Anonymity B2B Firm Relead.com
Latest News
- What if the Current AI Hype Is a Dead End?
- Microsoft Makes SMB Signing Default Requirement in Windows 11 to Boost Security
- Zyxel Urges Customers to Patch Firewalls Against Exploited Vulnerabilities
- Gigabyte Rolls Out BIOS Updates to Remove Backdoor From Motherboards
- SBOMs – Software Supply Chain Security’s Future or Fantasy?
- Ransomware Group Used MOVEit Exploit to Steal Data From Dozens of Organizations
- Cybersecurity M&A Roundup: 36 Deals Announced in May 2023
- Insider Q&A: Artificial Intelligence and Cybersecurity In Military Tech
