Doge’s actions to upload social security databases to vulnerable cloud servers have effectively created a “live copy of national social security information,” the whistleblower says.
WASHINGTON – Personal data belonging to over 300 million Americans is at risk after employees of a government efficiency initiative uploaded sensitive Social Security databases to insecure cloud servers, according to a whistleblower complaint from the Social Security Agency’s chief data officer.
Doge’s actions reportedly created a “live copy of national social security information,” as mentioned by the lawyer of the Chief Data Officer, Charles Borges. The complaint filed on August 26th argues that there’s no tracking on who accessed this data, which is stored in a server lacking security monitoring.
The data copied to this server, accessible only to Doge employees, contains critical information needed for Social Security Cards, including personal identifiers like Social Security Numbers, names, birthdates, and citizenship status, among other details.
“If a malicious actor gains access to this cloud environment, it could lead to widespread identity theft for Americans, jeopardizing their medical and food benefits,” Borges’ lawyer stated in the complaint. “There may also be significant costs to the government in reissuing social security numbers.”
The complaint, first reported by the New York Times, suggests possible violations of Social Security protocols and federal privacy laws. It has been submitted to US Bureau of Special Advisors and various committee leaders in the House.
Following a Supreme Court ruling on June 6 that allowed Doge employees to access large amounts of Social Security data, the initiative began transferring information to the cloud shortly thereafter, as noted by Borges.
When contacted for comment, the White House directed inquiries to the Social Security Agency. A department spokesperson stated they take whistleblower complaints seriously but dismissed the concerns raised by Borges. The statement indicated that the data mentioned in the complaint is secured in a long-established environment managed by the SSA, which monitors security closely.
Doge officials ignored security concerns and protocols, complaint said
Borges claimed in his complaint that a former Doge employee had requested the transfer of Social Security data to a new cloud on June 10. Access to the server was limited solely to Doge employees.
Citing confidentiality, cybersecurity officers within the department expressed their worries about this arrangement. One warning indicated that unauthorized access to the data could have catastrophic repercussions for both SSA beneficiaries and its programs.
Alam Mogadashi, the chief information officer at the Social Security Administration, reportedly gave “tentative approval” for the cloud data transfer on June 15, arguing that business needs outweighed security risks. The complaint noted that all risks associated with this implementation were ultimately accepted.
According to Borges, another Doge employee signed off on the upload, circumventing the agency’s existing rules and protocols. The complaint accuses Mogadashi of “abuse of authority” and substantial mismanagement that threaten public health and safety, as well as legal violations.
Mogadashi allegedly disregarded independent security oversight, placing American citizens’ social security data in what the complaint describes as a potentially unsecured cloud environment, implying that the Americans themselves bear the risks involved.
Since Elon Musk stepped down in May, Doge’s push for government spending reductions has become less prominent, yet their personnel continue to operate within various federal agencies, including the Social Security Agency.
Doge is expected to complete their roles in the Trump administration by the summer of 2026, as per an executive order signed in January.
