{"id":27045,"date":"2025-10-27T22:11:45","date_gmt":"2025-10-27T22:11:45","guid":{"rendered":"https:\/\/usaontheweb.com\/clone1\/hundreds-of-people-with-top-secret-clearance-exposed-by-house-democrats-website\/"},"modified":"2025-10-27T22:11:45","modified_gmt":"2025-10-27T22:11:45","slug":"hundreds-of-people-with-top-secret-clearance-exposed-by-house-democrats-website","status":"publish","type":"post","link":"https:\/\/usaontheweb.com\/clone1\/hundreds-of-people-with-top-secret-clearance-exposed-by-house-democrats-website\/","title":{"rendered":"Hundreds of People With \u2018Top Secret\u2019 Clearance Exposed by House Democrats\u2019 Website"},"content":{"rendered":"
\n
\n

The sensitive personal<\/span> details of more than 450 people holding \u201ctop secret\u201d US government security clearances were left exposed online, new research seen by WIRED shows. The people\u2019s details were included in a database of more than 7,000 individuals who have applied for jobs over the last two years with Democrats in the United States House of Representatives.<\/p>\n

While scanning for unsecured databases at the end of September, an ethical security researcher stumbled upon the exposed cache of data and discovered that it was part of a site called DomeWatch. The service is run by the House Democrats and includes videostreams of House floor sessions, calendars of congressional events, and updates on House votes. It also includes a job board and r\u00e9sum\u00e9 bank.<\/p>\n

After the researcher attempted to notify the House of Representatives\u2019 Office of the Chief Administrator on September 30, the database was secured within hours, and the researcher received a response that simply said, \u201cThanks for flagging.\u201d It is unclear how long the data was exposed or if anyone else accessed the information while it was unsecured.<\/p>\n

The independent researcher, who asked to remain anonymous due to the sensitive nature of the findings, likened the exposed database to an internal \u201cindex\u201d of people who may have applied for open roles. R\u00e9sum\u00e9s were not included, they say, but the database contained details typical of a job application process. The researcher found data including applicants\u2019 short written biographies and fields indicating military service, security clearances, and languages spoken, along with details like names, phone numbers, and email addresses. Each individual was also assigned an internal ID.<\/p>\n

\u201cSome people described in the data have spent 20 years on Capitol Hill,\u201d the researcher tells WIRED, noting that the information went beyond a list of interns or junior staffers. This is what made the finding so concerning, the researcher says, because they fear that if the data had fallen into the wrong hands\u2014perhaps those of a hostile state or malicious hackers\u2014it could have been used to compromise government or military staffers who have access to potentially sensitive information. \u201cFrom the perspective of a foreign adversary, that is a gold mine of who you want to target,\u201d the security researcher says.<\/p>\n

WIRED reached out to the Office of the Chief Administrator and House Democrats for comment. Some staff members WIRED contacted were unavailable because they have been furloughed as a result of the ongoing US government shutdown.<\/p>\n

\u201cToday, our office was informed that an outside vendor potentially exposed information stored in an internal site,\u201d Joy Lee, spokesperson for House Democratic whip Katherine Clark, told WIRED in a statement on October 22. DomeWatch is under the purview of Clark\u2019s office. \u201cWe immediately alerted the Office of the Chief Administration Officer, and a full investigation has been launched to identify and rectify any security vulnerabilities.\u201d Lee added that the outside vendor is \u201can independent consultant who helps with the backend\u201d of DomeWatch.<\/p>\n<\/div>\n

\n

There are many unsecured and publicly accessible databases across the internet, and the researcher says that they might not have paused to investigate the DomeWatch data had they not noticed key words involving top-secret security clearances. This underscores the concern, the researcher says, that while the database is small, it contains information that would be potentially valuable in nation-state espionage. One entry, for example, listed a person who had \u201cintelligence\u201d and \u201cUS-China relations\u201d experience.<\/p>\n

\u201cExposed databases are a widespread, non-partisan cybersecurity problem. Left unchecked, they enable targeted espionage, fraud, and identity abuse,\u201d says Alexander Leslie, senior advisor for government affairs at the threat intelligence firm Recorded Future, who was not involved in the research. \u201cIf accurate, this dataset would be extremely sensitive. Military histories and clearance status give adversaries precise reconnaissance and pretexting opportunities, and foreign espionage actors could further use this data for spear-phishing, impersonation, and targeted social-engineering to gain access or compromise accounts.\u201d<\/p>\n

According to the researcher, the data also included information about people\u2019s political affiliations. Among the estimated 7,000 entries, there were around 4,200 people who appeared to have experience working in Congress. In total 6,300 people were marked as having Democratic Party affiliation, while 17 were listed as having Republican Party affiliation, and another 250-plus were listed as independent or other. The researcher says there were also some links to files or documents housed in other cloud storage systems.<\/p>\n

Recorded Future’s Leslie also points out that known breaches of data related to US government employment\u2014most notably the 2015 Office of Personnel Management hack\u2014create what he calls \u201clong-term US national security and personnel risks.\u201d<\/p>\n

\u201cThis research was not targeted toward any political party or affiliation,\u201d the researcher who found the unsecured database says. \u201cIt was just finding data, realizing that it could be vulnerable, and thinking of all the ways that not just criminals could use it, but foreign adversaries. It shouldn’t be exposed.\u201d<\/p>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

The sensitive personal details of more than 450 people holding \u201ctop secret\u201d US government security clearances were left exposed online,<\/p>\n","protected":false},"author":7282,"featured_media":27046,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1166],"tags":[],"class_list":["post-27045","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-website"],"_links":{"self":[{"href":"https:\/\/usaontheweb.com\/clone1\/wp-json\/wp\/v2\/posts\/27045","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/usaontheweb.com\/clone1\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/usaontheweb.com\/clone1\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/usaontheweb.com\/clone1\/wp-json\/wp\/v2\/users\/7282"}],"replies":[{"embeddable":true,"href":"https:\/\/usaontheweb.com\/clone1\/wp-json\/wp\/v2\/comments?post=27045"}],"version-history":[{"count":0,"href":"https:\/\/usaontheweb.com\/clone1\/wp-json\/wp\/v2\/posts\/27045\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/usaontheweb.com\/clone1\/wp-json\/wp\/v2\/media\/27046"}],"wp:attachment":[{"href":"https:\/\/usaontheweb.com\/clone1\/wp-json\/wp\/v2\/media?parent=27045"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/usaontheweb.com\/clone1\/wp-json\/wp\/v2\/categories?post=27045"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/usaontheweb.com\/clone1\/wp-json\/wp\/v2\/tags?post=27045"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}