A whistleblower disclosure alleges that a live copy of the nation’s Social Security data resides in an unsecured cloud environment, exposing over 300 million Americans to identity theft and loss of vital benefits.
Allegations of Data Security Lapses
WASHINGTON—Charles Borges, Chief Data Officer (CDO) at the Social Security Administration (SSA), submitted a protected whistleblower disclosure on August 26, 2025, to the Office of Special Counsel and congressional committees.
Borges alleges that Department of Government Efficiency (DOGE) officials embedded within SSA created a live, unmonitored copy of the entire Social Security data set in a third-party cloud environment that bypasses established oversight protocols.
According to the disclosure, unauthorized access to this cloud environment could enable malicious actors to steal Social Security numbers, disrupt access to healthcare and food assistance programs, and force the government into a massive re-issuance of Social Security numbers.
Borges assumed his role at SSA on January 27, 2025, overseeing data access, exchange, and security across SSA’s cloud-based platforms.
He reports that DOGE, founded concurrently in January 2025 to combat fraud, repeatedly sought direct access to live Social Security data.
A lawsuit filed in March 2025 resulted in a temporary restraining order blocking DOGE’s access until June 6, 2025.
Borges’s whistleblower submission details how DOGE personnel nevertheless circumvented that order and secured internal approval by July 2025 to replicate SSA’s live data without independent security reviews.
Internal Responses and Potential Impact
In August 2025, Borges alerted SSA leadership to the unauthorized data replication, warning it constituted gross mismanagement and posed a substantial threat to public safety.
One senior official reportedly acknowledged that, if compromised, SSA might need to re-issue Social Security numbers to every registered American.
Andrea Meza, Director of Campaigns for the Government Accountability Project and Borges’s attorney, emphasized the urgency: “Mr. Borges discovered a disturbing pattern of risky access and misconduct impacting the public’s most sensitive data.
His disclosure urges immediate oversight by Congress and the Office of Special Counsel to mitigate these threats before it is too late.”
| Date | Event | Outcome |
|---|---|---|
| January 27, 2025 | Borges appointed CDO, tasked with data security oversight | Full visibility into SSA data access mandates |
| March 20, 2025 | Court issues restraining order against DOGE access | Access blocked until June 6, 2025 |
| June 6, 2025 | Temporary restraining order lapses | DOGE gains potential cable to request data replication |
| July 2025 | DOGE approved high-risk replication of live SSA dataset | Cloud copy established without independent security controls |
| August 26, 2025 | Whistleblower disclosure filed with OSC and Congress | Calls for immediate oversight and risk mitigation |
The SSA faces intense scrutiny as lawmakers and oversight bodies evaluate the scope of DOGE’s access and the adequacy of existing security controls.
Congressional committees are expected to hold hearings in September 2025 to question SSA and DOGE officials about the cloud replication process, the absence of oversight, and contingency plans for re-issuing compromised Social Security numbers.
As this story develops, Americans are advised to monitor credit reports for unusual activity and consider placing fraud alerts with the major credit bureaus.
Federal agencies must reconcile fraud-detection initiatives with robust data governance to safeguard citizens’ most sensitive personal information.
Find this Story Interesting! Follow us on LinkedIn and X to Get More Instant Updates
%20(1).webp?resize=1600,900&ssl=1&description=WASHINGTON—Charles Borges, Chief Data Officer (CDO) at the Social Security Administration (SSA), submitted a protected whistleblower disclosure on August 26, 2025,){kind=link}