Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/briankrebs/statuses/116597569851456486">BrianKrebs (briankrebs@infosec.exchange)'s status on Tuesday, 19-May-2026 10:00:37 JST</a><a href="https://infosec.exchange/@briankrebs" title="briankrebs@infosec.exchange"><img src="https://gnusocial.jp/avatar/21764-48-20231108132353.webp" width="48" height="48" alt="BrianKrebs" style="position: absolute; left: 0; top: 0;">BrianKrebs</a></section><article><p>New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub</p><p>Until this past weekend, a contractor for the Cybersecurity &amp; Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems. Security experts said the public archive included files detailing how CISA builds, tests and deploys software internally, and that it represents one of the most egregious government data leaks in recent history.</p><p><a href="https://krebsonsecurity.com/2026/05/cisa-admin-leaked-aws-govcloud-keys-on-github/" rel="nofollow">https://krebsonsecurity.com/2026/05/cisa-admin-leaked-aws-govcloud-keys-on-github/</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/6409375#notice-12619085">In conversation</a><time datetime="2026-05-19T10:00:37+09:00" title="Tuesday, 19-May-2026 10:00:37 JST">about 9 days ago</time> <span>from <span><a href="https://infosec.exchange/@briankrebs/116597569851456486" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@briankrebs/116597569851456486">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/6093816">A listing of files exposed by the "Private CISA" GitHub repo include: The Private CISA GitHub repo exposed dozens of plaintext credentials to important CISA GovCloud resources. The filenames include AWS-Workspace-Bookmarks-April-6-2026.html, AWS-Workspace-Firefox-Passwords.csv, Important AWS Tokens.txt, kube-config.txt, etc.</a></label><br><a href="https://media.infosec.exchange/infosec.exchange/media_attachments/files/116/597/563/541/512/344/original/8f9a823d2ae9bc9c.png" rel="external">https://media.infosec.exchange/infosec.exchange/media_attachments/files/116/597/563/541/512/344/original/8f9a823d2ae9bc9c.png</a></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
BrianKrebs (briankrebs@infosec.exchange)'s status on Tuesday, 19-May-2026 10:00:37 JST BrianKrebs
New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub
Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems. Security experts said the public archive included files detailing how CISA builds, tests and deploys software internally, and that it represents one of the most egregious government data leaks in recent history.
https://krebsonsecurity.com/2026/05/cisa-admin-leaked-aws-govcloud-keys-on-github/
In conversationabout 9 days ago from infosec.exchangepermalink
Attachments
1. A listing of files exposed by the "Private CISA" GitHub repo include: The Private CISA GitHub repo exposed dozens of plaintext credentials to important CISA GovCloud resources. The filenames include AWS-Workspace-Bookmarks-April-6-2026.html, AWS-Workspace-Firefox-Passwords.csv, Important AWS Tokens.txt, kube-config.txt, etc.
  https://media.infosec.exchange/infosec.exchange/media_attachments/files/116/597/563/541/512/344/original/8f9a823d2ae9bc9c.png

Public

Embed Notice

HTML Code

Corresponding Notice