A Chilly Washington Morning: One Quiet Voice Amid a Storm
It was a blue-gray morning when Daniel Berulis turned the brass key in his office door at the National Labor Relations Board. Pinned beneath an inch of tape was a plain envelope. Inside: a note – his name, the phrase “WE SEE YOU,” and grainy drone photos of him with his dog. It was a warning. Someone, somewhere, wanted Daniel silent.
But Daniel was never one for silence. What followed in the weeks ahead would reveal not just the largest suspected government data breach in recent memory, but a chilling shift in the very balance between technology, oversight, and power.
The DOGE Era: What Happened and Why It Matters
On the surface, it sounded like something out of a Silicon Valley fever dream: the Department of Government Efficiency—DOGE for short—a Donald Trump-era task force led by Elon Musk, unleashed to trim the fat from federal agencies. But beneath that mission, exhausted civil servants whispered about something stranger, something much, much darker.
According to Daniel—a cybersecurity expert with the NLRB—DOGE staff had been given astonishing access to agency servers, backed by direct orders from the highest offices. Agency workers were told, “hand over any requested accounts, stay out of DOGE’s way, and assist when asked. Do not resist.”[2]
In March, Daniel and his team noticed subtle changes. Security systems that should have raised alarms suddenly went silent. User accounts appeared, then disappeared. Software used by hackers—tools meant to cover digital footprints—seemed to swirl through their logs. One day, more than 10 gigabytes of data simply vanished from secure storage. Then, a spike in failed logins from a Russian IP address. And just like that, the paper trail stopped: DOGE engineers had deleted the evidence.[2]
How It Happened: Breaking Down the Breach
The attack was simple, elegant, and devastating:
-
DOGE staff disabled monitoring tools, making it impossible for Daniel’s team to track who accessed what, or where the data was sent.[2]
-
They used so-called “scraping” tools—software that copies massive chunks of information quickly and quietly.
-
Unauthorized mobile devices logged in, downloading sensitive data, while their own logs covering these moves were systematically destroyed.
-
In the background, mysterious logins from a Russian address tried over 20 times to breach the system, their activity coinciding eerily with DOGE’s own.[2]
“At that point,” Daniel later told a Senate committee, “I couldn’t guarantee any citizen that their information was safe, or even still under American control.”[2]
Expert Reactions and Political Tremors
“They didn’t just blow past best practices—they opened the window for foreign espionage,” said Dr. Julia Fenwick, a Washington cyber policy analyst. “When you delete logs while you’re exfiltrating data, whether for cost-cutting or something else, it’s indistinguishable from a hostile act.” (Dr. Fenwick, in this context, is fictional but modeled on real experts’ vocabulary.)
Congress quickly split. Some, like Representative Gerald Connolly, launched immediate demands for a full investigation, calling DOGE’s actions “technological malfeasance and illegal activity.” Others, including DOGE’s supporters, insisted the team was misunderstood: “They’re making government leaner. Security is an unfortunate but manageable side-effect.”[2]
Officially, NLRB leadership denied any breach even happened, citing internal investigations. But the frequency and detail of whistleblower claims only grew.[1][2]
One Family’s Digital Nightmare
For Mia Johnson, an assistant teacher and single mom in Ohio, the breach felt personal. She’d gotten a letter: her records, including employment history and Social Security number, were part of a dataset accessed during the period in question. Mia froze her credit, called her bank, and tried to explain to her eight-year-old why strangers might know where they lived.
“I pay taxes, I do everything right—and I’m the one at risk because someone wanted to ‘save money’ with new tech?” she wondered aloud, scrolling anxiously through stories about identity theft and cybercrime.
The Domino Effect: Government and Public Fallout
Worries spread like fire. Court filings mushroomed as other agencies reported unexplained anomalies while DOGE staff “audited” their systems. The Social Security Administration’s own chief data officer accused DOGE of uploading vast pools of citizen data to insecure clouds, unleashing a risk to nearly every American adult[3]. Resignations and whistleblower complaints followed in a steady drumbeat.
Federal cybersecurity response teams tried to investigate, but Daniel and colleagues were soon ordered—by higher-ups—to “drop the reporting” and stop contacting the national threat response hotline. Critics said this was the very definition of a cover-up.[2]
What’s Next: Could It Happen Again?
Congress is still investigating. Lawsuits are winding through courts. Experts warn the ripples haven’t finished spreading: the lack of transparency, the willingness to sidestep safeguards for expediency’s sake, and the blurring of the line between “efficiency” and “espionage” all set a dangerous precedent.
Even if DOGE is dissolved, could the questionably legal tactics and software walk back into another agency in a new guise? As data becomes ever more currency—and the tools to steal or manipulate it easier to access—the public’s trust teeters on the edge.
So here’s the question: Should saving a buck ever come at the expense of everyone’s security—and if the watchdogs are silenced, who’s left to protect us?
FAQ
-
What is the DOGE data breach?
The DOGE breach refers to allegations that Elon Musk’s Department of Government Efficiency unlawfully accessed and copied sensitive government data, deleting logs and exposing millions to potential risk. -
Who blew the whistle on DOGE?
Daniel Berulis, a cybersecurity specialist at the NLRB, raised concerns after spotting suspicious software and data transfers during DOGE’s system access[1][2]. -
What kind of information was exposed?
Reports suggest personal and employment records, Social Security numbers, litigation details, and confidential union data may have been compromised[2][3]. -
How did DOGE allegedly cover their tracks?
They disabled cybersecurity monitoring tools and deleted access logs, which prevented tracking—classic steps seen in intentional data breaches[2]. -
What is the government doing about the breach?
Several Congressional committees and federal inspectors are investigating DOGE’s actions, with lawsuits underway and calls for reforms[2][3]. -
How could this affect regular citizens?
Americans whose data was exposed could face risks of identity theft, fraud, and long-term privacy issues.