Patriot Pulse

Congress Just Got Hacked and the Contractor Behind It Allegedly Uses Offshore Labor

PiyaZIrconplus image via Shutterstock
PiyaZIrconplus image via Shutterstock

Congress spent years handing sensitive American data to offshore teams and H-1B visa workers.

Now the bill has come due – and it landed directly in their own medicine cabinet.

And lawmakers were notified that their prescription records and personal medical data had been compromised in a breach tied to a contractor serving the Congress Office of the Attending Physician.

The Company at the Center of It All

A Maryland-based healthcare software company – formally known as Networking Technology Inc. – that provides electronic prescribing and medical records systems.

Like dozens of mid-sized healthcare tech firms, RxNT keeps costs down by combining a small U.S. workforce with offshore development teams and H-1B visa workers filling technical roles stateside.

The breach hit between March 1 and March 3, 2026, and exposed patient names, dates of birth, addresses, and prescription information stored in RxNT's system.

The Office of the Attending Physician operates medical clinics on the Capitol campus where Navy medical personnel provide primary care, vaccinations, and prescription services for members of Congress and their staff.

That means the prescription histories and personal medical records of sitting senators, House members, and congressional aides were stored in a system maintained – at least in part – by teams with no real stake in protecting American national security.

Whether the breach traces directly to offshore personnel or H-1B workers has not yet been confirmed publicly.

But that is not actually the point.

The Pattern Has Been There for Years

This is not the first time that offshoring sensitive government-adjacent work has ended badly.

The Office of Personnel Management breach in 2015 exposed background investigation files on 21.5 million security clearance applicants, federal employees, and their family members – one of the largest breaches of government data in U.S. history.

Congressional investigators found that at least one contractor worker with root access to every row in every OPM database was physically located in China, and another contractor had employees holding Chinese passports.

The pattern is not subtle.

When you offshore the people responsible for building and maintaining systems that touch sensitive American data, you accept risk that no compliance checklist can eliminate.

You lose the cultural accountability, the national loyalty, and the security clearance infrastructure that makes critical data defensible.

The Real Outrage Here

Here is what should make every American furious.

Congress has spent years watching DHS, the VA, the IRS, and dozens of federal contractors hand critical infrastructure work to offshore teams – and did nothing.

Republican members introduced legislation targeting H-1B abuse. Democrats killed it or buried it in committee.

Hearings were held. Reports were written. Nothing changed.

The offshoring lobby – tech companies, staffing firms, major contractors – kept writing checks, and Congress kept looking the other way while American engineers got replaced and sensitive systems got handed to teams halfway around the world.

Now those same members of Congress are opening letters telling them their own medical records have been exposed.

It is not ironic anymore. It is consequence.

What Comes Next

The RxNT breach will generate investigations, oversight hearings, and press releases expressing outrage.

Democrats will blame underfunding. Republicans will blame the contractor. Both will miss the point.

The point is that you cannot build critical systems – healthcare records, security clearances, financial infrastructure, military software – using labor chosen for its cost rather than its accountability, and then act surprised when the protections fail.

Trump has already moved to tighten H-1B oversight and push American workers back into critical roles.

His administration understands something Washington has spent a decade pretending is not true: the people who build the walls are also the people who know where the gates are.

Congress is learning that lesson with their own prescription records.

They should have used that clarity when it was someone else's data. Instead they waited until it was theirs – and now they own the consequences they spent years ignoring.

Sources:

  • "Lawmakers Hit with Alarming Hack," Politico, May 2026.
  • "RXNT Notifies Clients of a March Data Breach Exposing Patient Data," HIPAA Journal, May 2026.
  • "OPM Breach: Two Waves of Attacks Likely Connected, Congressional Probe Concludes," Dark Reading, 2015.
  • "22 Million Affected by OPM Hack, Officials Say," ABC News, July 2015.

Start Commenting!