Brian Krebs reported that a public GitHub repository with sensitive internal CISA credentials "including cloud keys, tokens, plaintext passwords, logs and other sensitive CISA assets."
A contractor exposed sensitive internal CISA data, including credentials and infrastructure code, on a public GitHub repository, and the incident was brought to light by an investigative journalist.
CISA says it is reinforcing its security posture by implementing stricter control over public repositories and enhanced secret monitoring.
The agency shares lessons for organizations to strengthen their defenses
This is peak satire and I applaud you for it. It is funny and informative.
As an additional wrinkle to this story, it is important to clarify that the GitHub repo exposing all this data was not owned or operated by CISA but instead by a contractor. No not a company contracted with CISA, but an individual’s personal account.
So the failure is on CISA allowing this data to be exported, undetected, by a careless individual contractor. Rather than CISA failing to secure a Repo.