NLRB Whistleblower Alleges Data Breach by Elon Musk's DOGE
A whistleblower at the National Labor Relations Board (NLRB) has alleged a data breach by Elon Musk's Department of Government Efficiency (DOGE). Daniel Berulis, a 38-year-old security architect at NLRB, filed a complaint in early March, claiming unauthorized data access by DOGE. Berulis went public with his concerns after higher-ups at NLRB advised against reporting the matter to the US-CERT. He expressed worry that the unauthorized data transfer could tip the scales in favor of defendants in ongoing labor disputes. DOGE accounts had unrestricted access to NLRB databases, allowing them to read, copy, alter information, and even restrict log visibility or remove logs entirely. The breach involved the download of three code repositories from GitHub, one remarkably similar to a program published by Marko Elez, a DOGE employee. One of the downloaded libraries was designed for web scraping and brute forcing using a large pool of cloud Internet addresses. Someone later posted a critical review of Elez's code on GitHub, describing it as 'insecure, unscalable and a fundamental engineering failure'. The total data downloaded exceeded 10 gigabytes, including sensitive employee and union information. The NLRB whistleblower alleges that DOGE's actions could unfairly advantage defendants in labor disputes. The downloaded code libraries and the extent of data accessed raise serious concerns about data security and privacy. Further investigation is needed to determine the full impact and extent of the breach.
Read also:
- Orioles' 2025 Turnaround Powered by Late-Season Pitching Acquisitions
- The Cost of Speech is Zero, True Strength Lies in Unity
- Aiming to simplify the move towards cleaner automobiles, the newly established ministry plans to take direct action with Pannier-Runacher, Létard, and Vautrin at the helm.
- "The imperfect yet essential documentary, "Planet of the Humans," raises challenging and uncomfortable inquiries"
