1. United States
2. Md.
3. Letter

Request Criminal Investigation of DOGE Officials for Identity Theft and Cybercrime A January 16, 2026 Department of Justice filing in AFSCME v. Social Security Administration revealed systematic misconduct by Department of Government Efficiency employees that appears to violate state identity theft and cybercrime laws. I am writing to request that your office initiate a criminal investigation into these individuals under our state's statutes. Between March 7 and 17, 2025, DOGE team members used an unauthorized third-party server called Cloudflare to share Social Security Administration data. The SSA cannot determine what data was shared or whether it still exists on that server. On March 3, 2025, a DOGE team member sent an encrypted file to the Department of Homeland Security containing names and addresses of roughly 1,000 people from SSA systems. The SSA's Chief Information Office cannot access the file to verify its contents. On March 24, 2025, a DOGE team member signed a Voter Data Agreement with a political advocacy group in his capacity as an SSA employee, never reviewed through proper procedures. The SSA made two Hatch Act referrals to the Office of Special Counsel in late December 2025. DOGE engineer Aram Moghaddassi gained access to DHS's SAVE system and on March 15, 2025 wrote it was critical to get detailed immigration status for non-citizen SSNs. He then emailed Florida Governor Ron DeSantis's deputy chief of staff from a DHS account requesting Florida voter registration data to check for voter fraud. This pattern demonstrates intent to commit crimes, not mere policy violations. Using government data for partisan political operations violates the Hatch Act. Accessing and transferring personal information as part of a scheme to violate federal law satisfies the intent element of identity theft statutes. SSA whistleblower Chuck Borges warned that DOGE employees put records of more than 300 million Americans at risk by creating a copy of the Numident database in a vulnerable cloud environment without following security protocols. Federal officials lack immunity when exceeding authorized duties. Since the SSA itself didn't know its data was being moved and found the conduct potentially outside policy, the Supremacy Clause defense fails. State convictions cannot be pardoned by the president under dual sovereignty principles. The SSA holds records on virtually every American, meaning victims reside in our state and venue is proper here. I urge you to investigate these individuals for violations of our state's identity theft and cybercrime statutes.