Krebs on Security's Brian Krebs reports that a breach of a Web portal run by REI Systems for the U.S. Department of Homeland Security (DHS) has exposed private documents and some financial information for at least 114 companies that bid on a contract in 2013.
According to the DHS, the breach took place "sometime over the prior four months," affecting companies that bid on a contract to help the department's Science and Technology Directorate develop new communication technologies for first responders.
Krebs says the department "hasn't yet determined the cause or source" of the access.
A DHS spokesperson told Krebs the breach exposed 520 documents, including white papers, proposals, decision notification letters, documents regarding contract and award deliverables, and supporting materials. Of the 114 companies affected, 16 had bank account information exposed.https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
All companies affected are being provided with a list of their documents that were accessed.