A former member of the Department of Government Efficiency (DOGE), John Solly, is at the center of a whistleblower complaint alleging he improperly stored and intended to share sensitive Social Security Administration (SSA) data with his latest employer. The allegations, first reported by The Washington Post, center around Solly allegedly downloading data from the SSA’s Numerical Identification System (NUMIDENT) and the “death master file” onto a thumb drive.
Solly, a software engineer, reportedly told colleagues he planned to transfer the data to Leidos, a government contractor he joined in October as Chief Technology Officer for its health IT division. The timing and nature of the move have raised concerns, particularly given Leidos’s existing and potentially expanding contracts with the SSA, including a deal potentially worth up to $1.5 billion over five years according to WIRED.
The SSA’s Office of the Inspector General is investigating the claims. Solly, through his legal counsel, has denied any wrongdoing, calling the allegations “patently false and slanderous.” A spokesperson for Leidos stated the company has found no evidence to support the whistleblower’s claims.
DOGE and Access to Sensitive Data
Solly was one of twelve DOGE team members assigned to the SSA. His resume, prior to being taken offline, detailed his work on initiatives including “Digital SSN,” “Death Master File cleanup,” and the “SSN verification API (EDEN 2.0),” as reported by Yahoo News. The “death master file” is a crucial SSA database containing records of deceased individuals, used to prevent identity fraud. An API, or application programming interface, allows different systems to exchange data, potentially granting external access to Social Security information.
The NUMIDENT database, also reportedly accessed by Solly, contains comprehensive information from Social Security number applications, including names, birth dates, and race. The whistleblower alleges Solly sought assistance in transferring data from the thumb drive to a personal computer for “sanitization” before uploading it to his new employer. The complaint further alleges Solly expressed a belief he would receive a presidential pardon if his actions were deemed unlawful.
Leidos’s Contracts with the Social Security Administration
Leidos has a long-standing relationship with the SSA, securing millions of dollars in IT contracts over the years. Between 2010 and 2018, the company earned substantial revenue from SSA contracts. In 2018, Leidos was awarded contracts potentially totaling $639 million for IT support and disability claim processing. The $1.5 billion contract announced in 2023 significantly expands Leidos’s role with the agency as detailed in a January 21, 2026, House hearing.
Interestingly, as part of the broader DOGE initiative within the government in early 2025, some of Leidos’s existing contracts were reportedly reduced.
Ongoing Investigations and Concerns
Senator Gary Peters, the top Democrat on the Senate Homeland Security and Governmental Affairs Committee, has called for a full, independent investigation into the matter, citing potential violations of federal law and the exposure of sensitive personal information according to FedScoop. Democracy Forward, representing labor groups in a lawsuit against the SSA regarding DOGE’s data access, has filed a notice of factual development, arguing the revelations support claims of improper data disclosures.
The incident raises serious questions about data security protocols within the SSA and the oversight of individuals with access to sensitive information, particularly those transitioning between government service and the private sector. The potential impact of a data breach involving the NUMIDENT database and the death master file could affect millions of Americans.
What comes next will likely involve a thorough investigation by the SSA’s Office of the Inspector General, potentially leading to further scrutiny of DOGE’s activities and the security practices of government contractors. The outcome of this investigation could have significant implications for data privacy and security within the federal government.
Share your thoughts on this developing story in the comments below.
