A September 2025 internal U.S. Army memo, seen by Reuters, has raised significant security concerns about the Next Generation Command and Control (NGC2) battlefield communications platform, developed by Palantir Technologies, Anduril Industries, Microsoft, and other partners. The memo, authored by Army Chief Technology Officer Gabrielle Chiulli, describes the NGC2 prototype as “very high risk,” citing fundamental security flaws such as uncontrolled user data access, lack of activity tracking, and unverified software security. It also notes that third-party applications hosted on the system contain hundreds of high-severity vulnerabilities, creating the potential for adversaries to gain persistent, undetectable access. Despite these warnings, Anduril and Palantir maintain that the issues are being addressed as part of normal development, with Palantir asserting that no vulnerabilities were found in its platform. The assessment follows Anduril receiving a $100 million contract in July 2025 to develop the NGC2 prototype with partners including Palantir and Microsoft. The system was tested in March 2025 during live-fire artillery exercises at Fort Carson, Colorado, demonstrating faster and more reliable performance than legacy networks. Leonel Garciga, the Army’s Chief Information Officer and Chiulli’s supervisor, stressed that the memo is part of a standard process to triage cybersecurity risks and implement mitigation measures. The memo’s contents were first reported by Reuters, citing their access to the internal Army document.