We learned this week that the Department of Government Efficiency uploaded the private data of over 300 million Americans to an insecure cloud server. They pushed this transfer despite a March 20, 2025 temporary restraining order and lawsuits warning of the dangers of such a move.
Internal SSA Risk Assessment Form and career cybersecurity officials warned earlier this year that the NUMIDENT database contains sensitive data of more than 548 million Social Security numbers and unauthorized access would be catastrophic. Hackers could cause widespread identity theft, interrupted benefits, and costly Social Security number reissuance. But they did it anyway.
These actions violate laws, abuse authority, and amount to gross mismanagement. They’ve also endangered the data of hundreds of millions of Americans. We need to know whether these servers were breached and by whom. And DOGE needs to be held accountable.
Finally, please co-sponsor and push for immediate passage of Rep. Larson’s Protecting Americans’ Social Security Data Act to block political appointees from accessing sensitive data systems at the Social Security Administration. It would also establish privacy requirements in law for beneficiary data and strengthen oversight and civil penalties for any privacy and disclosure violations of Social Security beneficiaries’ personal information. Thanks.
First sent on August 28 by Jess Craven
