Secret Service mobile device failures put US leaders at risk
DIRECT ANSWER: A Department of Homeland Security inspector general report found Secret Service mobile device security failures put U.S. leaders and protectees at risk. Agents relied on personal smartphones for official work because government-issued phones lacked essential apps and tools, while agency devices went without threat-defense software until August 2025.
Key Takeaways
- A DHS inspector general report found Secret Service mobile device practices exposed leaders, protectees, and agents to interception risks.
- Agents used personal phones for missions because government devices blocked messaging apps, group texts, and photo sharing.
- Mobile threat-defense software was not deployed on government phones until August 2025.
- Devices were often not wiped within 24 hours after international travel, despite agency policy.
- The Secret Service agreed to all five watchdog recommendations and says it is strengthening communications policies.
What did the inspector general report find?
The report, ordered after the July 13, 2024 assassination attempt on President Donald Trump in Butler, Pennsylvania, faulted both official and personal device practices. Investigators said the Secret Service manages roughly 8,000 mobile devices with access to sensitive systems, including apps used for emergency relocation planning.
The watchdog concluded that adversaries could have intercepted and exploited Secret Service information, placing at risk our Nation's leaders, other protectees, and employees, especially when unsecured devices were used overseas. According to CNN, hacked personal phones could expose mission-related contacts, user history, geolocation, and photos that adversaries might use to plan attacks.
Why did agents use personal phones instead of government devices?
Personal device use became expected and routine, auditors wrote, especially on foreign assignments. Government-furnished phones often could not run common messaging apps such as WhatsApp, send group texts, or share photos. Those limitations persisted for roughly two years ending in May 2025.
Agents reported government devices frequently disconnected from VPNs and could not download apps needed to coordinate with local law enforcement. Shortly before the Butler shooting, one employee used a personal phone to receive a picture of the would-be assassin from local police because of reliability problems on the issued device, The Hill reported. As The Register noted, many agents simply would not rely on company-issued phones for day-to-day protective work.
What security failures left devices vulnerable?
Beyond personal-phone reliance, auditors found the Secret Service did not install mobile threat-defense software on government devices until August 2025. The agency also failed to routinely wipe phones after international travel despite a policy requiring wipes within 24 hours of returning to the United States.
Investigators cited one agent whose government phone had not been wiped across eight years and an estimated 20 international trips, including visits to high-risk countries. Some agents added personal VPNs to unsecured phones, which auditors said introduced additional risk. The review also found gaps in testing mobile apps before deployment.
What is the Secret Service doing now?
The agency concurred with all five recommendations, including stronger device management, cybersecurity training, overseas security controls, app testing, and reinforcing bans on personal devices during missions. Secret Service Director Sean Curran said the service has made comprehensive enhancements to communications policies to reduce the chance adversaries intercept operational data.
For readers tracking government cybersecurity and mobile-risk trends, see our Fintech & Crypto Alerts coverage for related device-security developments.