In stunning display of stupid, secret CISA credentials found in public GitHub repo

Chronological Source Flow
Back

AI Fusion Summary

Brian Krebs reported that the Cybersecurity Infrastructure Agency stored plaintext passwords, SSH keys, tokens, and other sensitive data in a GitHub repo called 'Private‑CISA' since November 2025. GitGuardian’s Guillaume Valadon discovered the repo after GitHub’s secret‑blocking protections failed, receiving no owner response.
Community Comments
Loading updates...
0