US lawmakers and civil-liberties advocates are escalating scrutiny of ICE and CBP use of facial recognition amid reports that immigration agents have used face-scanning tools on people observing or protesting enforcement activity. Proposed legislation dubbed the “ICE Out of Our Faces Act” would seek to bar ICE/CBP facial recognition use, alongside related demands to limit tracking of First Amendment activity and questions about whether ICE maintains a “domestic terrorists” database tied to immigration protests. Separately, records reviewed by WIRED indicate DHS’s Mobile Fortify facial-recognition app—rolled out in 2025 to “determine or verify” identities during operations—cannot reliably verify identity and is intended at best to generate investigative leads; the reporting also describes DHS approving the tool after weakening centralized privacy reviews and removing department-wide limits on facial recognition.
In parallel, Congress is debating the renewal of FISA Section 702, with lawmakers raising concerns that domestic surveillance authorities could be applied more broadly, including in support of immigration-related enforcement framed as a national security issue. Nextgov reports that transparency data shows intelligence agencies increased 702 searches in 2024 using identifiers linked to known or suspected Americans while pursuing foreign cyber and terrorism threats, even as the FBI reduced its own direct U.S.-person queries after new safeguards. A separate Nextgov item on an AI moratorium and sector-specific AI regulation is policy-focused and not directly tied to the ICE/CBP facial recognition deployments or Section 702 reauthorization debate described in the other reporting.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
6 events from the most recent confirmed update back to the earliest known activity.
By February 2026, lawmakers, intelligence officials, and advocacy groups were publicly debating whether to reauthorize or reform FISA Section 702. Civil-liberties groups pushed for warrant requirements for U.S.-person queries, while intelligence officials warned that weakening the authority could harm national security.
On February 5, 2026, Democratic lawmakers introduced the bicameral ICE Out of Our Faces Act. The bill would bar ICE and CBP from acquiring or using facial recognition and other biometric technologies, require deletion of collected biometric data, and create legal recourse for unlawful use.
In an Oregon case described in sworn testimony, an agent said two photos of the same woman produced different identities in Mobile Fortify and that the app did not provide match-confidence scores. The testimony highlighted concerns that the tool could generate unreliable leads rather than verify identity.
According to a lawsuit by Illinois and Chicago, Mobile Fortify was used in field operations more than 100,000 times after its launch. The reporting also alleges the app was used on targeted individuals, U.S. citizens, and people observing or protesting enforcement activity.
A government transparency report released in May said intelligence agencies conducted far more searches in 2024 using identifiers linked to known or suspected Americans while investigating foreign cyber and terrorism threats. The report also said the FBI reduced its direct U.S.-person searches after new safeguards took effect.
In spring 2025, the Department of Homeland Security launched and rapidly deployed the Mobile Fortify app for immigration agents to use during field operations. The app was presented as a tool to help determine or verify identities in the field.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
4 references tracked. Mallory keeps watching after this page renders.
nextgov.com
Open sourcearstechnica.com
Open sourcewired.com
Open sourcenextgov.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.