General News

CBSA launches investigation after licence plate reader linked to U.S. hack | CBC News

CBSA launches investigation after licence plate reader linked to U.S. hack | CBC News
The Canada Border Services Agency launched an investigation after the licence plate reader system it uses was targeted recently in a malicious cyberattack in the U.S.Earlier this week, news surfaced that photos of travellers and licence plates collected by U.S. Customs and Border Protection were compromised in a privacy breach last month. The CBSA and U.S.…

The Canada Border Companies Agency launched an investigation after the licence plate reader machine it uses used to be centered at this time in a malicious cyberattack in the U.S.

Earlier this week, news surfaced that photography of travellers and licence plates nonetheless by U.S. Customs and Border Protection had been compromised in a privacy breach final month. The CBSA and U.S. Customs and Border Protection exercise the identical plate reader skills.

“We’re currently reviewing and assessing what impacts, if any, this breach has on our operations and Canadians,” acknowledged CBSA spokesman Nicholas Dorion in an email to CBC.

“Whereas the CBSA awaits the completion of the forensic investigation, our info at the moment is that this incident does not pose systems or security vulnerabilities.”

Public Security Minister Ralph Goodale, whose portfolio comprises the border agency, acknowledged he’s concerned in regards to the breach.

“(CBSA is) investigating that total agonize from top to backside. To this level, there private no longer been crucial implications for CBSA’s info, however clearly CBSA is concerned in regards to the quality of the companies and products that are equipped to it and they’re investigating your total ramifications,” he acknowledged.

U.S. Customs and Border Protection acknowledged they learned of the knowledge breach, which affected fewer than 100,000 folks, at the discontinue of Would possibly per chance presumably.

A subcontractor transferred copies of photography to its firm network with out the agency’s authorization, violating U.S. authorities policy, acknowledged the American officers.

Annoying legal guidelines needed: CCLA

U.S. customs will no longer liberate the name of the subcontractor whose computer network used to be hacked, however the Washington Submit reported that a Microsoft Phrase doc of a U.S. Customs and Border Protection public commentary, despatched Monday to reporters, included the name “Perceptics” in the title (“CBP Perceptics Public Assertion“).

The U.Okay. computer security net net page The Register also reported that the hacker accountable alerted it to the breach in gradual Would possibly per chance presumably, identifying the firm interested as Perceptics.

And even the CBSA named Perceptics as the topic of the cyber assault, asserting the assault took discipline Would possibly per chance presumably 13.

CBSA has issued dozens of contracts to Perceptics for its licence plate reader and radio frequency identification companies and products since 2015, totalling more than $21 million.

The most up-to-date contract used to be awarded in March of this twelve months, in step with Public Works and Authorities Companies’ archives.  

The firm says its licence scanning skills identifies the province or utter of origin on no longer less than 95 per cent of autos with a rear licence plate, compresses the image and then directly shows that info to frame officers.  

“Autos with a transparent document of appropriate commerce and lumber will wade through speedy; autos of order would possibly per chance per chance per chance be detained for accurate clearance,” says a Perceptics press liberate from 2017.

The discipline of work of federal privacy commissioner acknowledged it is reaching out to the CBSA for more info.

“It surely raises concerns in regards to the privacy of Canadian travellers,” acknowledged spokesperson Tobi Cohen.

Michael Bryant, executive director of the Canadian Civil Liberties Affiliation, acknowledged the Perceptics case raises questions about why private companies are employed to fetch Canadians’ info.

“If Canada can no longer safeguard our privacy, the agency must always soundless lose the vitality to preserve shut it in the first discipline,” he acknowledged.

“The suitable solution to preserve faraway from private sector info breaches of sensitive private info is no longer to fetch and preserve such info in the first discipline. This comes at a time when facial recognition and series of sensitive info is on the upward thrust in Canada and the breach underscores the necessity for rules in Canada, where appropriate now there is none.”

Perceptics funds itself as the sole supplier of licence-plate readers “for passenger car valuable inspection lanes in any admire land border ports of entry in the United States, Canada and at basically the precious lanes in Mexico.”

The firm has no longer spoke back to CBC News’ question for commentary.

Read More