A recent data exposure at **Dialog**, the private events group co-founded by **Peter Thiel**, has cast a spotlight on critical security lapses, revealing personal information pertaining to several US national security personnel. Among those affected are an intelligence official serving on the **National Security Council (NSC)** and an active-duty intelligence officer involved in sensitive military operations, as reported by **WIRED**. The **Pentagon** has initiated an investigation into the matter. ### High-Value Targets for Foreign Intelligence Personal details of intelligence and military personnel are highly prized by foreign intelligence services. Such information can be leveraged for identification, surveillance, and recruitment of US operatives, both domestically and abroad. For active-duty officers and their units, such exposures carry significant operational risks. ### Misconfiguration, Not 'Cyberattack' While **Dialog** internally characterized the incident as a "cyberattack," evidence suggests the exposure was due to a website misconfiguration. Files, including private information and login tokens for 222 **Dialog** event registrants, were reportedly accessible simply by logging into an account and loading a specific landing page for the group's app. The discovery was initially made by **maia arson crimew**, a Swiss DJ and cybersecurity researcher. ### Scope of the Exposure The exposed data includes comprehensive dossiers on current and former senior military and national security officials from the United States and its allies. The **NSC** official, a former **CIA** officer, had their date of birth, home address, mobile number, headshot, political leanings, and private authentication token exposed. Similarly, the active-duty intelligence officer's dossier contained comparable personally identifiable information. Both individuals were newly registered for a forthcoming retreat in Ireland, with no prior history with **Dialog**. The files also contained responses to **Dialog's** registrant questionnaire, revealing personal predictions, book recommendations, and private biographical details. ### Implications for National Security **WIRED** has withheld the names of the affected **NSC** official and military intelligence officer, along with the latter's unit, to prevent further risk to their safety and operations. The **Pentagon's** operations security team is actively examining the fallout from this exposure. National security lawyer **Bradley Moss** noted that identifying specific special missions units could implicate classified information, and certain US intelligence personnel have enhanced legal protections under the **Intelligence Identities Protection Act (IIPA)**. However, **Moss** questioned whether the exposed intelligence officer would meet the narrow statutory definition of a "covert agent" under the **IIPA**. Intriguingly, **Dialog's** own staff notes indicated an awareness of the sensitivity surrounding the military intelligence officer, observing their limited online presence and acknowledging that such discretion "makes sense" given their role. ### Broader Impact Beyond the aforementioned individuals, the database contained records for over 20 other current and former military and intelligence officials, including a retired US general and a former senior security official in Israel. In some instances, the exposed files also listed spouses and family members as emergency contacts. The incident underscores the profound implications of even seemingly minor data security oversights when dealing with highly sensitive populations.