Social Security Watchdog Investigating Claims that DOGE Engineer Copied Its Databases

The Social Security Administration’s inspector general has opened a formal probe into a whistleblower claim that a former software engineer at DOGE—an entity linked to Elon Musk’s Department of Government Efficiency—exfiltrated two of the agency’s most sensitive data sets, the Numident and the Master Death File. Together these databases hold personal identifiers for more than 500 million living and deceased Americans, ranging from Social Security numbers to birth and death dates. According to the complaint, the engineer sought assistance moving the data from a thumb drive to his personal computer for “sanitization” before uploading it to a government contractor where he now works.

The SSA’s Office of the Inspector General filed the complaint in January, but both the agency and DOGE initially reported no knowledge of the allegation. After internal reviews failed to locate corroborating evidence, the watchdog escalated the matter, notifying congressional committees and the Government Accountability Office. This follows a separate August whistleblower report that claimed DOGE stored SSA data in an unsecured cloud environment, a scenario described by former SSA chief data officer Charles Borges as the “worst‑case” for data privacy. The cumulative concerns have heightened scrutiny of how federal data is shared with private‑sector partners.

If investigators confirm that the Numident or Master Death File were copied, the breach could trigger massive identity‑theft risks and compel Congress to tighten federal data‑handling statutes. Companies that contract with government agencies may face stricter vetting, mandatory encryption standards, and real‑time monitoring to prevent unauthorized transfers. Meanwhile, privacy advocates argue that the incident underscores the need for a centralized, auditable data‑governance framework across all U.S. agencies. As the probe unfolds, businesses handling sensitive public records will watch closely for regulatory guidance that could reshape compliance obligations nationwide.