Publicly Available Personal Data Raises Security Concerns for U.S. Officials

Recent investigations have revealed that personal contact information and account credentials belonging to several high-ranking U.S. government officials were readily accessible online. A report published by German news outlet Der Spiegel highlighted the exposure of phone numbers, email addresses, and even passwords associated with Pentagon chief Pete Hegseth, National Security Advisor Mike Waltz, and Director of National Intelligence Tulsi Gabbard.

The findings, detailed by Der Spiegel reporter Roman Höfner on social media, were obtained using standard people-search tools and previously reported data breaches. Höfner stated that the identified information was linked to various online platforms including Dropbox, Microsoft accounts, WhatsApp, social networks, fitness tracking apps, and secure messaging service Signal. He emphasized that these email addresses and phone numbers appeared to be actively in use and connected to existing accounts, rather than representing outdated or archived data.

Security experts have underscored the potential risks associated with this type of exposure. The availability of such information significantly increases the likelihood of successful phishing attacks targeting government officials. These attacks could grant malicious actors access to sensitive devices, email accounts, chat applications, and financial services like PayPal. Such breaches can facilitate malware installation, communication monitoring, and potentially even attempts at political coercion or blackmail.

Further investigation by WIRED revealed that National Security Advisor Mike Waltz and Susie Wiles had publicly accessible Venmo friends lists, which they subsequently made private after the publication raised concerns with the White House. Experts have characterized this situation as a “counterintelligence nightmare,” highlighting the challenges in safeguarding sensitive information within government circles.