A DOGE bro left Social Security with 500M records on a drive and expected pardon

techdirt.com · spenvo · 18 hours ago · view on HN · security
0 net
Tags
microsoft
A DOGE Bro Allegedly Walked Out Of Social Security With 500 Million Americans’ Records On A Thumb Drive And Expected A Pardon If Caught | Techdirt Sign In Register Preferences Techdirt TechDirt GreenHouse Free Speech Error 402 Ctrl-Alt-Speech Deals Jobs Support Techdirt Daily Deal: The 2026 Ultimate Web Development And Coding Bundle Ars Fires Reporter For Accidentally Using Fake AI Quotes A DOGE Bro Allegedly Walked Out Of Social Security With 500 Million Americans’ Records On A Thumb Drive And Expected A Pardon If Caught Failures from the seems-bads dept Wed, Mar 11th 2026 11:00am - Mike Masnick From the very beginning of the DOGE saga, many of us raised alarms about what would happen when a bunch of inexperienced twenty-somethings were handed unfettered access to the most sensitive databases in the federal government with essentially zero oversight and zero adherence to the security protocols that exist for very good reasons. We wrote about it when a 25-year-old was pushing untested code into the Treasury’s $6 trillion payment system . We published a piece about it, originally reported by ProPublica, when DOGE operatives stormed into Social Security headquarters and demanded access to everything while ignoring the career staff who actually understood the systems. That ProPublica deep dive painted a picture of 21-to-24-year-olds who didn’t understand the systems they were demanding access to, had “pre-ordained answers and weren’t interested in anything other than defending decisions they’d already made,” and were operating with essentially no accountability. The former acting commissioner described the operation as “a bunch of people who didn’t know what they were doing, with ideas of how government should run—thinking it should work like a McDonald’s or a bank—screaming all the time.” These are the people who were handed the keys to the most sensitive databases the federal government holds. And now we have what appears to be the entirely predictable consequence of all of that: direct exfiltration of data in a manner known to break the law, but zero concern over that fact, because of the assurances of a Trump pardon if caught. The Washington Post has a stunning whistleblower report alleging that a former DOGE software engineer, who had been embedded at the Social Security Administration, walked out with databases containing records on more than 500 million living and dead Americans—on a thumb drive—and then allegedly tried to get colleagues at his new private sector job to help him upload the data to company systems. According to the disclosure, the former DOGE software engineer, who worked at the Social Security Administration last year before starting a job at a government contractor in October, allegedly told several co-workers that he possessed two tightly restricted databases of U.S. citizens’ information, and had at least one on a thumb drive. The databases, called “Numident” and the “Master Death File,” include records for more than 500 million living and dead Americans, including Social Security numbers, places and dates of birth, citizenship, race and ethnicity, and parents’ names. The complaint does not include specific dates of when he is said to have told colleagues this information, but at least one of the alleged events unfolded around early January, according to the complaint. While working at DOGE, the engineer had approved access to Social Security data. In the past, this was the kind of thing that the US government actually did a decent job protecting and keeping private. Now they have DOGE bros walking out the door with it on thumbdrives. Holy shit! And here’s the detail that really tells you everything about the culture DOGE created inside these agencies: He told another colleague, who refused to help him upload the data because of legal concerns, that he expected to receive a presidential pardon if his actions were deemed to be illegal, according to the complaint. According to this complaint, this person allegedly understood that what he was doing might be illegal, did it anyway, and had already calculated that the political environment would protect him from consequences. The Elon Musk DOGE bros clearly believed they ran the show and that anyone associated with DOGE was entirely above the law on anything they did. Perhaps just as troubling, the complaint also alleges that after leaving government employment, the DOGE bro claimed he still had his agency computer and credentials, which he described as carrying “God-level” security access to Social Security’s systems. The complaint alleges that after leaving government employment, the former DOGE member told colleagues he had a thumb drive with Social Security data and had kept his agency computer and credentials, which he allegedly said carried largely unrestricted “God-level” security access to the agency’s systems — a level of access no other company employee had been granted in its work with SSA. The Social Security Administration says he had turned in his laptop and lost his credential privileges when he departed. His lawyer denies all alleged wrongdoing, and both the agency and the company said they investigated the claims and didn’t find evidence to confirm them. The company said it conducted a “thorough” two-day internal investigation. Two whole days! Investigating themselves. On an issue where ignoring it benefits them. But the SSA’s inspector general is investigating, and has alerted Congress and the Government Accountability Office, which has its own audit of DOGE’s data access underway. And this whistleblower complaint, filed back in January, surfaces alongside a separate complaint from the SSA’s former chief data officer, Charles Borges, which alleges that DOGE members improperly uploaded copies of Americans’ Social Security data to a digital cloud. A separate complaint, made in August by the agency’s former chief data officer, Charles Borges, alleges members of DOGE improperly uploaded copies of Americans’ Social Security data to a digital cloud, putting individuals’ private information at risk. In January, the Trump administration acknowledged DOGE staffers were responsible for separate data breaches at the agency, including sharing data through an unapproved third-party service and that one of the DOGE staffers signed an agreement to share data with an unnamed political group aiming to overturn election results in several states. We wrote about that other leak at the time, of a DOGE bro sharing data with an election denier group. All of this just confirms what many people expected and none of this should surprise anyone who was paying attention: Donald Trump allowed Elon Musk and his crew of over-confident know-nothings to view federal government computer systems as their personal playthings, where they could access and exfiltrate any data they wanted for whatever ideological reason they wanted. And we’re only hearing about this because a whistleblower came forward and because a former chief data officer had the courage to file a complaint. How many similar incidents happened at other agencies where no one spoke up? DOGE operatives were embedded across the entire federal government, accessing heavily restricted databases and, as the Washington Post puts it, “merging long-siloed repositories.” Every single one of those agencies had the same dynamic: young, inexperienced but overconfident engineers demanding unfettered access, career staff pushing back and being overruled, and essentially no security protocols being followed. Former chief data officer Borges put it about as well as anyone could: “This is absolutely the worst-case scenario,” Borges told The Post. “There could be one or a million copies of it, and we will never know now.” Once it’s out, you can’t put it back. We’re going to be learning about the consequences of DOGE’s ransacking of federal systems for years, maybe decades. And we’re finding out that the waste, fraud, and abuse we were told DOGE was there to find, appears to have mostly been in their own actions. Filed Under: doge , elon musk , entitlement , privacy , security , social security 12 Comments Leave a Comment If you liked this post, you may also be interested in... Hackers Expose The Massive Surveillance Stack Hiding Inside Your "Age Verification" Check Open Letter To Tech Companies: Protect Your Users From Lawless DHS Subpoenas So, You’ve Hit An Age Gate. What Now? Whoops: 'AI' Toy Company Leaks Chat Logs, Personal Data Of 50,000 Toddlers Former Federal Judge: ICE's Home Raiding Policy Violates A Basic Constitutional Right Rate this comment as insightful Rate this comment as funny You have rated this comment as insightful You have rated this comment as funny Flag this comment as abusive/trolling/spam You have flagged this comment The first word has already been claimed The last word has already been claimed Insightful Lightbulb icon Funny Laughing icon Abusive/trolling/spam Flag icon Insightful badge Lightbulb icon Funny badge Laughing icon Comments icon Comments on “A DOGE Bro Allegedly Walked Out Of Social Security With 500 Million Americans’ Records On A Thumb Drive And Expected A Pardon If Caught” Subscribe: RSS Leave a comment Filter comments in by Time Filter comments as Threaded Filter only comments rated Insightful Filter only comments rated funny LOL Filter only comments that are Unread 12 Comments Collapse all replies And I doubt that was the only copy Threaded [2] and you should completely doubt that any government ‘citizen data’ anywhere is safe from internal or external theft & exploitation This was the goal all along. The primary objective was the data, not reducing spending. Every data broker, every organized crime syndicate, every intelligence agency, everyone wants this data — and some of them are more than willing to kill for it. It’s that valuable. Which is why it was so carefully managed for so long. But of course now that arrogant and ignorant DOGE bro strolled off with it, that doesn’t matter any more. What does matter, and what DOGE bro probably doesn’t realize, is that he’s painted a target on himself. By now, several intelligence agencies have identified him — of course they have, it’s their job. More will have identified him by tomorrow. And everyone else will follow in good time. Somewhere in that parade will be someone who wants that data badly enough to track him down and ask him for it nicely…or not. That’s the problem with stealing the keys to the kingdom: afterwards, nobody else needs to — they just need to take them from you. Every hacker who has been working tirelessly to steal this very data for decades must be facepalming so hard when the answer to “how do I steal highly confidential personal information from the US government” turned out to be “make some racist posts on twitter and apply for a job”. Honestly, i still don’t understand how any real American, especially those in the targeted agencies, did not throat-punch these fucks on day one. And it still has not happened, after all this time. direct exfiltration of data in a manner known to break the law, but zero concern over that fact, because of the assurances of a Trump pardon if caught. It needs to be a priority of the next administration to make sure every instance of this is very publicly punished, pardons or not. Well, the MAGA base should love this when it’s sold to Russians and their identities are stolen. Hopefully, Trump’s whole family has their information in it. This comment has been flagged by the community. Click here to show it. It is in no way illegal for him to do that. It is the executive branch’s data. (the point was to expose fraud, btw) I know you want to PRETEND that it was illegal, cuz you didn’t like it (I’m starting to think you like fraud), but it really really wasn’t. Threaded [2] It is in no way illegal for him to do that. It is the executive branch’s data. (the point was to expose fraud, btw) It is VERY illegal for him to do that. There are strict controls on access to SSN data. Are you a fucking fool? Even if you were correct (you’re not) that it was the executive branch’s data, the story is very clear that he took it, KEPT IT after he was NO LONGER EMPLOYED by the gov’t and TRIED TO UPLOAD IT TO HIS NEW EMPLOYER’S SERVER. Not a single person suggests this was to expose fraud. You’re so bad at your cultish behavior. It doesn’t even pass the laugh test. You used to at least pretend to make an effort. Now you’re an extremely boring troll. And by the way, who couldn’t see this one coming from orbit? Christ, I’ll bet decent money the “God-level” clearance bit was a Deus Ex reference from someone who doesn’t realize he’s on the Bob Page side of things. Add Your Comment Cancel reply Your email address will not be published. Required fields are marked * Have a Techdirt Account? Sign in now . Want one? Register here Name Email Subscribe to the Techdirt Daily newsletter URL Subject Comment * Comment Options: Use markdown . Use plain text. Make this the First Word or Last Word. No thanks. ( get credits or sign in to see balance) what's this? What's this? Techdirt community members with Techdirt Credits can spotlight a comment as either the "First Word" or "Last Word" on a particular comment thread. Credits can be purchased at the Techdirt Insider Shop » Δ Daily Deal: The 2026 Ultimate Web Development And Coding Bundle Ars Fires Reporter For Accidentally Using Fake AI Quotes Follow Techdirt Techdirt Daily Newsletter Subscribe to Our Newsletter Please leave this field empty Get all our posts in your inbox with the Techdirt Daily Newsletter! We don’t spam. Read our privacy policy for more info. Check your inbox or spam folder to confirm your subscription. A weekly news podcast from Mike Masnick & Ben Whitelaw Subscribe now to Ctrl-Alt-Speech » Essential Reading The Techdirt Greenhouse Read the latest posts: Winding Down Our Latest Greenhouse Panel: The Lessons Learned From SOPA/PIPA From The Revolt Against SOPA To The EU's Upload Filters Did We Miss Our Best Chance At Regulating The Internet? Read All » Trending Posts A DOGE Bro Allegedly Walked Out Of Social Security With 500 Million Americans' Records On A Thumb Drive And Expected A Pardon If Caught The Wyden Siren Goes Off Again: We'll Be "Stunned" By What the NSA Is Doing Under Section 702 Hackers Expose The Massive Surveillance Stack Hiding Inside Your "Age Verification" Check Techdirt Deals Techdirt Insider Discord The latest chatter on the Techdirt Insider Discord channel... Loading... Become an Insider! Recent Stories Thursday 20:04 MAHA Institute: Nix The Entire Childhood Vaccine Schedule (2) 15:52 Ctrl-Alt-Speech: Writing Some Wrongs (0) 13:46 Weasel Words: OpenAI’s Pentagon Deal Won’t Stop AI‑Powered Surveillance (1) 12:16 Don’t Ban Kids From Using Chatbots (24) 10:47 The Wyden Siren Goes Off Again: We'll Be "Stunned" By What the NSA Is Doing Under Section 702 (3) 10:42 Daily Deal: The All-in-One Super-Sized Ethical Hacking Bundle (0) 09:31 Docs Expose CBP's Use Of Ad Data To Track People's Movements (3) 05:28 David Ellison Pinky Swears CNN Will Retain Editorial Independence, Points To CBS (22) Wednesday 20:07 Beavers Are Not Moose: Buc-ee's Sues Competitor Over Cartoon Moose Branding (17) 15:36 EFF To Court: Don’t Make Embedding Illegal (10) More × Email This Story This feature is only available to registered users. You can register here or sign in to use it. Tools & Services Twitter Facebook RSS Podcast Research & Reports Company About Us Advertising Policies Privacy Contact Help & Feedback Media Kit Sponsor / Advertise More Copia Institute Insider Shop Support Techdirt Brought to you by Floor64 Proudly powered by WordPress. Hosted by Pressable. This site, like most other sites on the web, uses cookies. For more information, see our privacy policy
← Back to stories