A whistleblower has come forward with explosive allegations that Elon Musk’s controversial federal initiative, the Department of Government Efficiency (DOGE), played a role in a major cybersecurity breach at the National Labor Relations Board (NLRB). The incident, if confirmed, could represent one of the most significant intrusions into a U.S. labor agency in recent history—raising urgent questions about digital oversight, inter-agency boundaries, and the use of federal power under the guise of “efficiency.”
Allegations of Unauthorized Access and Data Exfiltration
Daniel Berulis, an IT staffer with nearly a decade of experience at the NLRB, filed a sworn affidavit earlier this month alleging that DOGE personnel were granted sweeping access to the agency’s internal systems in early March 2025. According to Berulis, the access went far beyond routine audits or compliance checks—it involved modifications to system logging protocols and the surreptitious transfer of approximately 10GB of sensitive data.
The exfiltrated files reportedly included proprietary case information, details of ongoing union activity, confidential employer-union communications, and dozens of sealed affidavits from whistleblowers and labor organizers. “This wasn’t a technical hiccup,” Berulis wrote in his affidavit. “This was a coordinated, deliberate breach.”
Berulis also claimed to have identified multiple login attempts from a Russian IP address using valid DOGE-issued credentials. Although the attempts were blocked by the NLRB’s geofencing policies, their existence raised serious concerns about credential management and third-party access under DOGE’s control. “Either they’ve been compromised, or they’re using offshore infrastructure,” Berulis speculated in his report.
Perhaps most disturbing, Berulis and a colleague attempted to escalate their concerns to the Cybersecurity and Infrastructure Security Agency (CISA) but were allegedly blocked by high-ranking officials at the NLRB. The whistleblower further reported receiving an unmarked envelope at his home days later—inside was a note reading, “You’ve said enough,” along with several printed surveillance photos of him entering and exiting the NLRB’s Washington, D.C. headquarters.
Official Responses and Ongoing Investigations
The NLRB has issued a terse statement denying any unauthorized access to its systems, calling the allegations “unsubstantiated and lacking corroboration.” A spokesperson said the agency “continues to maintain robust cybersecurity protocols and internal oversight.”
When reached for comment, representatives from DOGE declined to address the claims directly, and Elon Musk’s press team has yet to release a public statement. The Cybersecurity and Infrastructure Security Agency (CISA) said it could not comment on ongoing matters. The FBI also refused to confirm or deny whether an investigation is underway.
Despite the silence, the Government Accountability Office (GAO) has confirmed that it is currently auditing DOGE’s activities across multiple federal departments—including Labor, Education, Homeland Security, Health and Human Services, Treasury, and the Social Security Administration. The probe, which began quietly in February, aims to determine whether DOGE’s sweeping digital mandates comply with federal privacy laws, data-sharing agreements, and cybersecurity standards.
DOGE, founded in 2024 under a sweeping executive order promising to “disrupt inefficiency across government systems,” has faced criticism from privacy advocates and labor unions for its rapid deployment and opaque oversight mechanisms. The department has also been accused of centralizing data operations with little regard for longstanding agency firewalls or civil liberties.
Broader Implications
This latest revelation adds to a growing storm surrounding DOGE’s influence over federal IT infrastructure. Critics argue that the department, under Musk’s loosely defined leadership role, has blurred the lines between innovation and intrusion. “What began as a push for efficiency is now bordering on a digital surveillance regime,” said Raj Patel, a cybersecurity expert at the Brookings Institution.
The potential exposure of union-related data, in particular, could have chilling effects across the labor sector. “This strikes at the core of protected labor activity,” said Teresa Choi, a legal analyst specializing in labor law. “If true, it could undermine decades of precedent on confidentiality and whistleblower protections.”
As investigations proceed and the GAO’s audit unfolds, the whistleblower’s fate remains uncertain. Berulis is reportedly seeking whistleblower protections and legal counsel through the Office of Special Counsel, citing fears of retaliation.
Meanwhile, government watchdogs, civil rights groups, and digital privacy advocates are calling for immediate congressional hearings and full transparency. Whether DOGE is ultimately cleared or implicated, the incident highlights an unsettling trend: in the race to modernize the federal government, some agencies may be leaving constitutional safeguards in the dust.
