A prank website promoted by a former senior Department of Homeland Security official’s anti-Trump organization is drawing scrutiny after a researcher alleged the site exposed thousands of user records and collected messages that allegedly threatened President Donald Trump.
DEFIANCE.org promoted the site, UndoTrump.org.
Miles Taylor and Xander Schultz launched the anti-Trump group. Taylor served as chief of staff at the Department of Homeland Security during Trump’s first administration and later worked at Google as head of advanced technology and security strategy, according to a University of Pennsylvania biography.
DataRepublican, an online researcher who has gained attention for analyzing political data systems, alleged Monday that UndoTrump.org collected names, email addresses, and user-submitted messages through a backend system that lacked proper access controls.
The Dallas Express has not independently verified the contents of the alleged database and is not publishing private user information or alleged threat language from the records.
Prank Site Asked Users To Sign Up
“All you have to do is sign up for a Removal Party,” the post said.
The same post later disclosed the campaign as a prank.
“APRIL FOOL’S,” the post said. “Alright, alright, alright. We don’t have legal authorization to remove Trump’s name from everything that he’s defaced. These Removal Parties aren’t real… YET.”
Taylor signed the post and urged readers to join DEFIANCE.org.
“But you don’t have to wait until January 21, 2029 to erase his terrible legacy,” the post said. “Join DEFIANCE.org TODAY — and encourage others to join — to undo Trump’s ‘civic vandalism’ immediately. We will make such a day possible.”
Researcher Alleges Open API
DataRepublican alleged that the signup records from UndoTrump.org included names, email addresses, and political messages submitted by users. The researcher also alleged that the data sat behind “the same vulnerability” and the “same zero authentication” as a separate anti-ICE site linked to Taylor.
“UndoTrump[.]org — launched April 1, 2026 as an ‘April Fools’ joke’ — collects names, emails, and political messages from people signing up for fictional ‘Removal Parties’ at government buildings,” DataRepublican wrote.
The researcher claimed the database included more than 4,000 signup records and more than 3,300 unique people.
DataRepublican also alleged that Taylor and Schultz appeared in pre-launch signups before the site went public.
“Taylor signed up for his own site as user #5,” DataRepublican wrote. “User #3 is Xander Schultz, his co-founder. The other pre-launch sign ups are test users.”
Alleged Threats Raise New Questions
DataRepublican further alleged that some user-submitted messages included explicit threats against Trump.
In one redacted screenshot posted to X, DataRepublican appeared to show a signup record containing fields for a user’s name, email address, selected location, message, public-status marker, signup number, and creation timestamp. The message field appeared to include violent language about Trump.
“The messages people submitted weren’t just political commentary,” DataRepublican wrote. “Multiple entries contain explicit death threats against the President of the United States — a federal crime.”
It remains unclear whether DEFIANCE.org identified or reported any threatening messages before the researcher publicized the alleged exposure.
The allegation creates a sharp contrast with how Taylor publicly framed DEFIANCE when it launched. CBS News reported in October that Taylor described the organization as a “Google” for people seeking ways to oppose Trump “lawfully, peacefully and defiantly.”
DEFIANCE’s own April 1 post also described the group as fighting Trump “lawfully, peacefully, and defiantly.”
Anti-ICE Site Also Faced Data Exposure Claim
The UndoTrump allegation follows separate claims involving GTFOICE.org, another anti-Trump administration platform linked to Taylor and DEFIANCE.
Hagerstown Rapid Response reported Saturday that GTFOICE.org may have exposed user information submitted to a platform designed to organize opposition to proposed ICE detention facilities. The report described the issue as “a serious security failure involving sensitive user data.”
DataRepublican alleged that UndoTrump.org and GTFOICE.org operated from the same server and shared technical similarities, including the same Google Cloud Platform infrastructure, React frontend, Express.js backend, and registrar.
DEFIANCE.org says Taylor and Schultz “decided to stop waiting around for someone else to build this and just do it,” adding that they put “their own time and money” into the organization.
Broader Threat Environment
The allegations come days after federal authorities charged Raymond Eugene Chandler III, a Pennsylvania Democrat U.S. Senate candidate, over alleged voicemails threatening Trump and the family of a member of Congress.
As previously reported by The Dallas Express, investigators alleged Chandler urged a lawmaker to kill Trump and discussed armed resistance against U.S. Immigration and Customs Enforcement. Chandler faces allegations only; prosecutors must prove the charges in court.
The federal affidavit in Chandler’s case said representatives for the unnamed member of Congress provided the FBI with “numerous recordings” and raised concerns about “escalating calls for violence.”
Federal investigators said authorities increased safety measures for some officials, immediate family members, and staff because of the alleged threats.
No evidence connects the Chandler case to DEFIANCE.org, UndoTrump.org, Taylor, or DataRepublican. It does, however, underscore the heightened scrutiny surrounding political rhetoric, online threats, and the handling of messages that may pose a threat to federal officials.
Taylor and DEFIANCE.org had not publicly addressed DataRepublican’s UndoTrump.org allegations as of Tuesday morning.
