Suspected FBI hacked, leaked top secret data on the internet

Known as the FBI Terrorist Screening Center (TSC), this database was created in 2003 after the 9/11 terrorist attacks. The database includes names and personal information of individuals believed to be involved in terrorist activities.

The TSC is managed by the FBI but can also be accessed by other agencies of the US government. The TSC is also known as the No-Fly List and is used to identify individuals who are authorized to fly to/from the United States or to travel within the United States.

Security researcher Bob Diachenko has just shared that he discovered a copy of the TSC database on a Bahrainian IP address. Diachenko said in this database there are 1.9 million records with information such as: Full name, TSC tracking ID, citizenship, gender, date of birth, passport number.

Diachenko shared that he reported the incident to the US Department of Homeland Security on July 19. That same day, the search engines Censys and ZoomEye indexed this database.

The FBI has not yet commented. It is not clear whether the FBI was hacked or other US agencies exposed this data.

TSC data has been kept secret for over a decade. It was only in the last few years that DHS began notifying US residents when they were added to TSC's no-fly list.