Republican legislator indicates Congress will investigate violation of TSA no-fly list



CNN

A Republican congressman who serves on the House Homeland Security Committee said Congress “will come for answers” after a hacker revealed the Transportation Security Administration’s no-fly list of known or suspected terrorists was accessible on an unsecured computer server .

“The entire US no-fly list – with more than 1.5 million entries – was found on an unsecured server by a Swiss hacker,” Bishop said in a statement. tweet. “Aside from the fact that the list is a civil liberties nightmare, how was this information so easily accessible?”

The North Carolina legislator, who sits on the House Homeland Security Committee, indicated that Congress will investigate the data exposure revealed Friday.

“We will come for answers,” Bishop claimed, making it possibly the latest in a long list of investigations that House Republicans have promised to launch now that they control the lower chamber.

CNN has contacted the committee for comment.

In an earlier statement to CNN, the TSA said Friday that it is “aware of a potential cybersecurity incident and we are investigating it in conjunction with our federal partners.”

The data was on the public internet on an unsecured computer server hosted by CommuteAir, a regional airline based in Ohio, according to the hacker who claimed the discovery, CNN previously reported.

The hacker, who also describes herself as a cybersecurity researcher, previously told CNN that she notified CommuteAir of the data exposure.

The regional airline said in a statement that the data accessed by the hacker was “an outdated 2019 version of the federal no-fly list” that included names and dates of birth.

The no-fly list is a list of known or suspected terrorists who are not allowed to fly into or into the US. The screening program grew out of the September 11, 2001 terrorist attacks and involves airlines comparing their passenger records with federal records to keep dangerous people off planes.

CNN previously reported that CommuteAir, which exclusively operates 50-seat regional flights for United Airlines from its Washington Dulles, Houston and Denver hubs, said it took the affected computer server offline after a “member of the security research community” contacted the airline. .

The Daily Dot, a tech news outlet, first reported on the alleged data breach.

Leave a Comment