CISA exposed plaintext passwords and cloud keys on GitHub for six months
Source: Cryptobriefing
Published:
<p>The US federal cybersecurity agency, tasked with protecting critical infrastructure, left admin credentials and AWS GovCloud keys in a public repository that sat undetected for half a year.</p> <p>A public repo maintained by a CISA contractor, ironically named “Private-CISA,” contained 844 MB of