DOGE Employee Allegedly Stole Social Security Data on Thumb Drive

Federal Watchdog Reveals Data Breach

A staff member working under the Department of Government Efficiency reportedly copied sensitive Social Security Administration data onto a personal thumb drive, according to a new report that has intensified scrutiny of DOGE's access to federal systems. The revelation comes as multiple government agencies have raised concerns about the broad data access granted to DOGE personnel since the initiative's creation.

The incident was flagged by an internal watchdog review that found the employee had accessed databases containing personally identifiable information for millions of Americans. The data reportedly included Social Security numbers, payment records, and other sensitive details that are normally subject to strict access controls within the federal government.

How the Breach Occurred

According to the report, the DOGE employee was granted administrative-level access to SSA systems as part of the efficiency initiative's mandate to audit federal spending and identify waste. However, the scope of that access appears to have far exceeded what was necessary for the stated mission of reducing government overhead.

Sources familiar with the matter indicate that standard cybersecurity protocols were bypassed in the rush to give DOGE staffers access to agency databases. Normally, accessing SSA records requires multiple layers of authentication, background checks specific to the agency, and continuous monitoring of data transfers. Several of these safeguards were reportedly relaxed or waived for DOGE personnel.

The use of a personal thumb drive is particularly alarming to cybersecurity experts. Removable storage devices are among the most common vectors for data breaches in both government and corporate environments, as they can easily be lost, stolen, or used to transfer data to unsecured systems.

Congressional Response and Legal Questions

Lawmakers on both sides of the aisle have demanded answers. The Senate Finance Committee announced it would hold hearings on DOGE's data access practices, with ranking members calling the incident a potential violation of the Privacy Act of 1974, which governs how federal agencies collect, maintain, and disseminate personal information.

Legal experts say the employee could face criminal charges under the Computer Fraud and Abuse Act if the data transfer was unauthorized or exceeded the scope of their approved access. The Privacy Act also carries both civil and criminal penalties for improper disclosure of records.

Several privacy advocacy groups have filed Freedom of Information Act requests seeking details about what data DOGE employees have accessed across all federal agencies, not just the SSA. The Electronic Frontier Foundation called the incident a predictable consequence of granting broad system access without adequate oversight.

Broader Implications for Government Data Security

The breach highlights a tension that has existed since DOGE's inception: the initiative's mandate to rapidly audit government operations often clashes with the deliberate, security-first approach that agencies use to protect sensitive data. Federal IT systems were designed with compartmentalized access for good reason, and circumventing those protections introduces systemic risk.

Cybersecurity professionals have warned that even well-intentioned data access can create vulnerabilities. Once data leaves a secured environment on a portable device, it becomes nearly impossible to track or protect. The SSA data in question could be used for identity theft, fraud, or other malicious purposes if it falls into the wrong hands.

The Social Security Administration serves more than 70 million Americans who receive monthly benefits, and its databases are among the most sensitive in the federal government. A compromise of this data could have cascading effects across financial systems, healthcare providers, and other institutions that rely on Social Security numbers as identity verification.

What Happens Next

The SSA has reportedly launched its own internal investigation alongside the inspector general's office. DOGE leadership has not publicly commented on the specific allegations but has previously defended its data access practices as necessary for identifying billions of dollars in waste and fraud.

The incident is likely to fuel ongoing legal challenges to DOGE's operations. Multiple federal judges have already issued rulings questioning the legality of DOGE's access to certain agency systems, and this latest revelation could strengthen those cases. For now, the thumb drive and its contents remain the subject of an active federal investigation.

This article is based on reporting by TechCrunch. Read the original article.