🤦🏻♂️ A CISA contractor disabled GitHub's secret scanner, then posted AWS GovCloud admin keys to a public repo called "Private-CISA." The keys stayed valid 48 hours after disclosure. 🤬
krebsonsecurity.com/2026/05/cisa...
#CISA #GovCloud #security #privacy #cloud #infosec #cybersecurity
Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovC...
