DHS and ICE Contractor Data Breach Exposes Thousands of Entities
A recent cybersecurity breach targeting the U.S. Department of Homeland Security’s (DHS) Office of Industry Partnership has exposed sensitive contract details involving over 6,600 organizations. The incident, first reported by the non-profit Distributed Denial of Secrets, was publicly disclosed by a hacking collective identifying itself as the Department of Peace.
The leaked data includes comprehensive records of companies, government agencies, and universities that applied for or secured contracts with DHS and Immigration and Customs Enforcement (ICE). Among the affected entities are major firms such as Anduril, HBGary, L3Harris, Microsoft, Oracle, Palantir, and Raytheon, as well as federal agencies like the FBI and NASA.
The compromised information spans:
- Company names, URLs, and employee details (names, titles, contact information)
- Business and personal addresses
- Tax ID numbers, including Employer Identification Numbers (EINs) and potential Social Security Numbers (SSNs)
- Government contractor identifiers (UEI numbers, CAGE codes)
- Internal DHS staff comments on data updates
- A secondary list detailing awarded contracts and their purposes, some of which were not publicly accessible via the DHS’s official portal
The Department of Peace claimed the breach was motivated by opposition to DHS and ICE’s immigration enforcement policies, citing detentions, injuries, and deaths linked to their operations. The group stated its intent was to expose corporate and institutional ties to these agencies, though it acknowledged that some affected entities such as universities and public safety organizations were not the primary targets of its criticism.
The full scope of the breach remains unclear, as the hackers described the data as "likely incomplete." The incident underscores ongoing risks to government contractor confidentiality and the potential for politically motivated cyberattacks to disrupt federal operations.
Source: https://www.cyberdaily.au/security/13284-hacktivists-claim-breach-of-dhs-ice-data-allegedly-leaked
Oracle TPRM report: https://www.rankiteo.com/company/oracle
Raytheon TPRM report: https://www.rankiteo.com/company/raytheon
Federal Bureau of Investigation TPRM report: https://www.rankiteo.com/company/federal-compass
"id": "rayorafed1772527461",
"linkid": "raytheon, oracle, federal-compass",
"type": "Breach",
"date": "3/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Defense/Technology',
'name': 'Anduril',
'type': 'Company'},
{'industry': 'Cybersecurity',
'name': 'HBGary',
'type': 'Company'},
{'industry': 'Defense/Aerospace',
'name': 'L3Harris',
'type': 'Company'},
{'industry': 'Technology',
'name': 'Microsoft',
'type': 'Company'},
{'industry': 'Technology',
'name': 'Oracle',
'type': 'Company'},
{'industry': 'Data Analytics/Defense',
'name': 'Palantir',
'type': 'Company'},
{'industry': 'Defense/Aerospace',
'name': 'Raytheon',
'type': 'Company'},
{'industry': 'Law Enforcement',
'name': 'FBI',
'type': 'Government Agency'},
{'industry': 'Aerospace',
'name': 'NASA',
'type': 'Government Agency'},
{'industry': 'Education',
'name': 'Universities',
'type': 'Educational Institution'}],
'data_breach': {'number_of_records_exposed': '6,600+ organizations',
'personally_identifiable_information': 'Names, titles, '
'contact information, '
'SSNs, EINs, addresses',
'sensitivity_of_data': 'High (includes SSNs, EINs, personal '
'and business addresses, internal '
'communications)',
'type_of_data_compromised': 'Contract details, company '
'information, employee details, '
'tax ID numbers, government '
'identifiers, internal comments, '
'awarded contracts'},
'description': 'A recent cybersecurity breach targeting the U.S. Department '
'of Homeland Security’s (DHS) Office of Industry Partnership '
'has exposed sensitive contract details involving over 6,600 '
'organizations. The leaked data includes comprehensive records '
'of companies, government agencies, and universities that '
'applied for or secured contracts with DHS and Immigration and '
'Customs Enforcement (ICE). The breach was claimed by the '
'hacking collective *Department of Peace*, motivated by '
'opposition to DHS and ICE’s immigration enforcement policies.',
'impact': {'brand_reputation_impact': 'Potential reputational damage to '
'affected entities',
'data_compromised': 'Sensitive contract details, company names, '
'URLs, employee details, addresses, tax ID '
'numbers, government contractor identifiers, '
'internal DHS staff comments, awarded '
'contracts',
'identity_theft_risk': 'High (exposure of SSNs, EINs, and personal '
'details)'},
'motivation': 'Opposition to DHS and ICE’s immigration enforcement policies',
'references': [{'source': 'Distributed Denial of Secrets'}],
'threat_actor': 'Department of Peace',
'title': 'DHS and ICE Contractor Data Breach Exposes Thousands of Entities',
'type': 'Data Breach'}