NNSA Article Idea 08/31/2025 07:52 PM
“Follow along my journey as I identify threats to national security, report them, and nothing is done. Our digital systems are fully compromised, as are the people left in charge of them”
Initial Access / Recon Stage
February 5, 2025 Farritor and Adam Ramada Gain Access to DOE M365
“He’s not cleared to be in DOE, on our systems. None of those things have been done.”
Farritor was granted access to basic IT including email and Microsoft 365, one of the people said. The chief information office only does a small amount of **IT and cybersecurity work for the National Nuclear Security Administration, they said, including providing connectivity and running basic internet services for NNSA’s headquarters. **It does not run IT systems for the nuclear agency’s labs controlling the nation’s nuclear stockpile.
February 7, 2025 Former SpaceX Ryan Riedel Installed as DOE CIO
“the department’s top IT official charged with managing tech acquisitions and protecting personnel data across a vast bureaucracy.”
https://www.cnn.com/2025/02/06/climate/doge-energy-department-trump/index.html
April 2025 - Luke Farritor and Adam Ramada have accounts on DOE/NNSA’s 2 highly classified networks
In February, CNN reported that DOGE employees, including Farritor, were seeking access to the secretive computer systems. At the time, Energy Secretary Chris Wright denied that they would be allowed on the networks.
“This reporting is false. No DOGE personnel have accessed these NNSA systems. The two DOGE individuals in question worked within the agency for several days and departed DOE in February,” the spokesperson told NPR in an emailed statement.
In a second statement later Monday evening, the spokesperson clarified that the accounts had been created but said they were never used by the DOGE staffers. “DOE is able to confirm that these accounts in question were never activated and have never been accessed,” the email statement read.
“They were able to directly see Ramada and Farritor’s names in the directories of the networks. The network directories are visible to thousands of employees involved in nuclear weapons work at facilities and laboratories throughout the U.S., but the networks themselves can only be accessed on specific terminals in secure rooms designated for the handling of classified information.”
https://www.npr.org/2025/04/28/nx-s1-5378684/doge-energy-department-nuclear-secrets-access
February 14, 2025 300 NNSA Workers Fired — Highest Level of Clearance, Nuclear Weapons Safety Experts
“Just days before, officials in leadership had scrambled to write descriptions for the roughly 300 probationary employees at the agency who had joined the federal workforce less than two years ago.
Managers were given just 200 characters to explain why the jobs these workers did mattered.”
https://www.npr.org/2025/02/14/nx-s1-5298190/nuclear-agency-trump-firings-nnsa
This sounds an awful lot like DOGE fed job descriptions for the freaking agency that manages our nuclear arsenal.
What AI was used and why the hell do they think that’s a good idea?!
March 10, 2025 Riedel Resigns as DOE CIO. No Reason Given. Mission Accomplished?
http://executivegov.com/articles/dawn-zimmer-acting-doe-cio-appointment-riedel-resignation
April ?, 2025 Farritor and Ramada Have Accounts
” NNSA Enterprise Secure Network, is used to transmit detailed “restricted data” about America’s nuclear weapons designs and the special nuclear materials used in the weapons, among other things. The network is used to transfer this extremely sensitive technical information between the NNSA, the nation’s nuclear weapons laboratories and the production facilities that store, maintain and upgrade the nation’s nuclear arsenal.
Secret Internet Protocol Router Network (SIPRNet), is used by the Department of Defense to communicate with the Department of Energy about nuclear weapons. SIPRNet is also used more broadly for sharing information classified at the secret level, information that “could potentially damage or harm national security if it were to get out,”
Access to both networks would normally require a “Q” clearance, the highest level of security clearance at the Department of Energy.
It remains unclear just how much access to classified data the two DOGE staffers could have actually had if they had used their accounts. ”
https://www.npr.org/2025/04/28/nx-s1-5378684/doge-energy-department-nuclear-secrets-access
They can’t read the title of the Agency, and they fed job descriptions into AI to decide cuts. Then asked for even more information
DOGE Accessed America’s Most Secret Nuclear Systems. Then China Got In
perplexity labs web app here
https://www.perplexity.ai/search/give-cybersecurity-report-from-14YNbwm9Td2puxLZYYSP5A#2
research
https://www.perplexity.ai/page/microsoft-365-access-as-a-reco-ke2QsL2tSMyAAN3khuakOw
Separate Commvault Likely Treasury and Us Marshals
In May 2025, CISA advised Commvault Metallic customers to rotate secrets used between Feb and May. The product is a backup tool for M365, the cloud version of Microsoft Office, hosted on Azure.
https://www.commvault.com/blogs/customer-security-update
this threat actor may have accessed a subset of app credentials that certain Commvault customers use to authenticate their M365 environments.
idea: doge gives china doe creds, china uses commvault cve to get more secrets from other agenies
“give us the creds, we’ll do the rest”
commvault breach treasury was noticed jsut a week after riedel became doe cio
Treasury Department and the Bureau of Engraviny as well as US Marshalls Service and ? use Commvault’s government cloud product. (cite fedramp)
May 2025 nextgov source names silk typhoon which is later publicly affirmed
none of the advisories admit it but commvault was hacked by china, commvault provides gov services,