Microsoft is currently under scrutiny following allegations that its GitHub platform may have been used to host code facilitating unauthorized data extraction from the National Labor Relations Board (NLRB). Representative Stephen Lynch has formally requested that Microsoft CEO Satya Nadella provide records related to a GitHub repository named "NxGenBdoorExtract," which was reportedly associated with a staff member from the Department of Government Ethics (DOGE). This repository, initially public before being made private, is suspected of containing code designed to create a backdoor into the NLRB's internal case management system, known as NxGen.
Whistleblower Daniel Berulis has raised concerns that this code may have enabled the extraction of approximately 10 gigabytes of sensitive data from the NLRB. Cybersecurity experts have noted that the repository's name itself suggests a tool intended for data extraction. Representative Lynch's letter highlights that DOGE staffers allegedly deleted system logs and established concealed methods to transfer government data without detection. The NLRB's inspector general has initiated an inquiry into this potential breach of federal data protections. As of now, Microsoft has not publicly commented on these allegations.
This incident underscores the critical importance of robust cybersecurity measures and vigilant oversight within government agencies to prevent unauthorized access and data breaches. The potential misuse of widely-used platforms like GitHub for such activities raises significant concerns about data security and the safeguarding of sensitive information.
Source: Windows Report Microsoft Pressed Over DOGE GitHub Code Tied to NLRB Data Removal
