In the latest digital misfire of a troubled federal rollout, the very agency charged with safeguarding the health data of millions has instead lit a quiet fuse beneath the financial identities of the nation’s doctors.
The Centers for Medicare and Medicaid Services, under the banner of President Trump’s push to modernize health care technology, inadvertently hung a shingle on a publicly accessible database containing the Social Security numbers of health care providers. The exposure, first detailed in an exclusive Washington Post report by Dan Diamond and Clara Ence Morse, is not a hack.
It is not a sophisticated cyber intrusion. It is, by the government’s own admission, a mistake—one born of haste, sloppy data entry, and a system seemingly built more for speed than security.
The database in question powers a new Medicare portal, a digital directory designed to help seniors find which doctors accept which insurance plans. It is the kind of tool that sounds so simple, so necessary, that it is difficult to believe it did not already exist. But here is the sharper truth: the same public-facing data set meant to bring transparency to American health care was, for at least several weeks, quietly spilling the most sensitive personal identifiers of the very people providing that care.
When The Washington Post downloaded the database and sampled its contents, reporters found dozens of Social Security numbers, sitting in plain digital view, linked directly to providers’ names and other identifying information. The files were not displayed on the front page of the portal. They did not announce themselves. But they were there, accessible to anyone with the knowledge to look, for weeks. CMS has not said how many providers were caught in this net.
One physician, granted anonymity for fear of identity theft, told the Post: “I don’t even know how Medicare officials would get my Social Security number.” That is the quiet terror of the episode. The government did not lose a box of paper records. It did not misplace a laptop. It built a system that, through a combination of incorrect entries and insufficient safeguards, allowed providers to unknowingly surrender their own numbers—or have them surrendered on their behalf—into a public square.
CMS responded with the bureaucratic equivalent of a shrug and a promise. A spokesperson said the problem “stems from incorrect entries of provider or provider-representative-supplied information in the wrong places.”
In plain English: users typed the numbers where they should not have, and the system did not stop them. The agency said it has “taken steps to address it promptly” and is “reinforcing safeguards.”
The Post informed health officials on a Tuesday; the database came down. But the question hanging over the wreckage is not whether the files are gone now, but how such a failure was allowed to happen in the first place.
This is not the first stumble. The Post reported last year that an early version of the same directory was riddled with errors, misidentifying which plans covered which providers. That is the kind of mistake that leaves a senior standing at a pharmacy counter with a surprise bill. This new mistake—the exposure of Social Security numbers—leaves a physician staring at a credit report, wondering who else has their name and their number and the keys to their financial life.
The project is part of a broader push for a national directory of health care providers, led by Amy Gleason, the acting administrator of the U.S. DOGE Service and a senior CMS official. Trump administration officials have framed the directory as a commonsense use of federal reach. “We felt like this is a good-use case of the government actually doing something,” Gleason said last year. It is a modest boast, and even that now feels like a reach.
Overseeing the broader agency is Dr. Mehmet Oz, confirmed as CMS administrator on April 3, 2025, under President Trump and Health and Human Services Secretary Robert F. Kennedy Jr. Oz, the former television personality and Senate candidate, has built his public health agenda around phrases like “personalized solutions,” “modernizing technology,” and “Medicare Advantage for all.” His supporters say he brings a fresh eye to a bloated system. His critics—including Public Citizen and Physicians for a National Health Program—warn that he is carrying water for private insurers, pushing privatization of Medicare and cuts to Medicaid while holding significant investments in health companies.
Neither the promise nor the critique changes what happened here. A database was opened. Numbers were exposed. And when The Washington Post asked CMS how many providers were affected, whether they had been notified, and what exactly went wrong, the agency did not answer. It took the database down and offered a statement about incorrect entries.
Two Democratic senators from Oregon, Jeff Merkley and Ron Wyden, warned in November that the rushed rollout would mislead seniors and leave them with unexpected bills. They did not, at the time, warn that the same system might also hang a lantern on the Social Security numbers of the doctors themselves. They probably did not think they had to.
Oz and his deputies have defended the project. In a letter to Merkley and Wyden last month, Oz pledged to ensure that people with Medicare “can make informed choices about their health coverage with confidence and transparency.” Confidence and transparency are fine words. But they do not protect a provider’s Social Security number once it has been left in a publicly accessible database for weeks. And they do not answer the more uncomfortable question: in the rush to make government do something, who was watching the doors?
Discover more from NJTODAY.NET
Subscribe to get the latest posts sent to your email.