Secret Service normalized personal phones in protective operations
Security policy loses first when government-furnished phones cannot do the job agents say they actually need.
TL;DR
FedScoop, citing a Department of Homeland Security inspector general report, says Secret Service mobile-device gaps from October 2022 through April 2025 included personal-device use in protective operations, government phones without security software, vulnerable apps and inconsistent wiping after international missions. Protectees, employees and investigative teams carry the risk. Travel reimbursement records made the workaround look routine, which is exactly how a control stops being a control.
FedScoop’s account of the Department of Homeland Security Office of Inspector General report describes institutionalized workaround management. Personal-device use had become normal even in protective operations, while Secret Service government-furnished equipment did not reliably support the work employees said they had to do. The issued phones reportedly disconnected from the virtual private network and could not download apps employees described as essential for investigations and coordination with local law enforcement. The approved device became the less usable device, which is how controls get bypassed without anyone making a grand decision.
Then there is the overseas travel problem. The Office of the Chief Information Officer had a wipe policy for returned government devices, but the inspector general found it was not consistently followed. One employee said a phone had never been wiped across eight years and 20 international trips, including high-risk countries. Another reported 15 trips over eight years and only four wipes. A written wipe policy that cannot survive routine travel is just documentation.
The records angle should feel familiar. FedScoop reported in 2022 that Secret Service produced one text in response to the DHS inspector general’s Jan. 6 request after a phone replacement process and that the agency left employees to back up phone content themselves (https://fedscoop.com/secret-service-supplied-1-january-6-text/). Personal phones make that problem harder because the agency loses both security management and records custody at the edge.
The audit had an access fight too. OIG said Secret Service delayed access to asset management and travel systems for more than 130 days, limiting validation and interviews; Director Sean Curran responded that DHS need not provide direct system access when systems may contain out-of-scope data. The Secret Service still concurred with all five recommendations. The Monday work lands on the Office of the Chief Information Officer: make issued phones capable enough to use, then prove app approvals, security settings and post-travel wipes actually happened.
Published ·Deep Fathom