The article has the link to the whistleblower report. <a href="https://whistlebloweraid.org/wp-content/uploads/2025/04/2025_0414_Berulis-Disclosure-with-Exhibits.s.pdf" rel="nofollow">https://whistlebloweraid.org/wp-content/uploads/2025/04/2025...</a><p>In it, the whistleblower said DOGE demanded and got god access to the NLRB Azure instance. And they proceeded to turn several things off such as MFA for mobile devices. He also detected login attempts from Russia using DOGE credentials. He apparently took screenshots using his phone’s camera including the powershell commands (similar to CURL) to invoke packages from GitHub.
If you're doing an actual efficiency audit, you are not doing half of what is reported here.<p>And then after they launched a formal review of the breaches:<p>> But on April 3 or 4, the assistant CIO "and I were informed that instructions had come down to drop the US-CERT reporting and investigation and we were directed not to move forward or create an official report," Berulis wrote.<p>It's truly shocking what the US Gov is letting DOGE get away with, with no oversight.
> Notably, within minutes of DOGE personnel creating user accounts in NLRB systems, on multiple occasions someone or something within Russia attempted to login using all of the valid credentials (e.g. Usernames/Passwords)<p>Looks like they actually were compromised like many people suspected given their poor security practices.
> Bakaj said they notified law enforcement about an "absolutely disturbing" threat Berulis received on April 7. Someone "taped a threatening note to Mr. Berulis' home door with photographs—taken via a drone—of him walking in his neighborhood," Bakaj wrote. "The threatening note made clear reference to this very disclosure he was preparing for you, as the proper oversight authority. While we do not know specifically who did this, we can only speculate that it involved someone with the ability to access NLRB systems."<p>Elon Musk is now overseeing threats on Federal employees. His fans must be thrilled.