[Analysis] CISA contractor left AWS GovCloud admin keys, plaintext passwords, SAML certs, and Kubernetes configs on a public GitHub repo for 183 days
Source: Reddit
Published:
<p>I wrote a full technical breakdown of the CISA/Nightwing GitHub credential leak that dropped last week. Sharing here because the coverage mostly stopped at "government agency leaked secrets" without getting into what actually failed at each layer. What was in the repo (844 MB): - AWS GovCloud adm