Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/briankrebs/statuses/116619211861422630">BrianKrebs (briankrebs@infosec.exchange)'s status on Saturday, 23-May-2026 01:41:40 JST</a><a href="https://infosec.exchange/@briankrebs" title="briankrebs@infosec.exchange"><img src="https://gnusocial.jp/avatar/21764-48-20231108132353.webp" width="48" height="48" alt="BrianKrebs" style="position: absolute; left: 0; top: 0;">BrianKrebs</a></section><article><p>New, by me: Lawmakers Demand Answers as CISA Tries to Contain Data Leak</p><p>"Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity &amp; Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other agency secrets on a public GitHub account. The inquiry comes as CISA is still struggling to contain the breach and invalidate the leaked credentials."</p><p>From the story: </p><p>"KrebsOnSecurity has learned that more a week after CISA was first notified of the data leak by the security firm GitGuardian, the agency is still working to invalidate and replace many of the exposed keys and secrets."</p><p>"On May 20, KrebsOnSecurity heard from Dylan Ayrey, the creator of TruffleHog, an open-source tool for discovering private keys and other secrets buried in code hosted at GitHub and other public platforms. Ayrey said CISA still hadn’t invalidated an RSA private key exposed in the Private-CISA repo that granted access to a GitHub app which is owned by the CISA enterprise account and installed on the CISA-IT GitHub organization with full access to all code repositories."</p><p><a href="https://krebsonsecurity.com/2026/05/lawmakers-demand-answers-as-cisa-tries-to-contain-data-leak/" rel="nofollow">https://krebsonsecurity.com/2026/05/lawmakers-demand-answers-as-cisa-tries-to-contain-data-leak/</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/6419280#notice-12636699">In conversation</a><time datetime="2026-05-23T01:41:40+09:00" title="Saturday, 23-May-2026 01:41:40 JST">about 6 days ago</time> <span>from <span><a href="https://infosec.exchange/@briankrebs/116619211861422630" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@briankrebs/116619211861422630">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/6104375">A screenshot of one part of the Public-CISA github file repo, showing exposed files as:B AWS-Workspace-Bookmarks-April-6-2026.html
B AWS-Workspace-Firefox-Bookmarks.html
#A AWS-Workspace-Firefox-Passwords.csv
A AWS-Worskpace-Passwords-April-6-2026.csv
S| Important AWS Tokens.txt
Fi Kube-Config.txt</a></label><br><a href="https://media.infosec.exchange/infosec.exchange/media_attachments/files/116/619/204/346/413/400/original/e1050233c912b78d.png" rel="external">https://media.infosec.exchange/infosec.exchange/media_attachments/files/116/619/204/346/413/400/original/e1050233c912b78d.png</a></li><li><article><header><div>Domain not in remote thumbnail source whitelist: krebsonsecurity.com</div><h5><a href="https://krebsonsecurity.com/2026/05/lawmakers-demand-answers-as-cisa-tries-to-contain-data-leak/">Lawmakers Demand Answers as CISA Tries to Contain Data Leak</a></h5><div></div></header><div>Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity &amp; Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other agency secrets…</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
BrianKrebs (briankrebs@infosec.exchange)'s status on Saturday, 23-May-2026 01:41:40 JST BrianKrebs
New, by me: Lawmakers Demand Answers as CISA Tries to Contain Data Leak
"Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other agency secrets on a public GitHub account. The inquiry comes as CISA is still struggling to contain the breach and invalidate the leaked credentials."
From the story:
"KrebsOnSecurity has learned that more a week after CISA was first notified of the data leak by the security firm GitGuardian, the agency is still working to invalidate and replace many of the exposed keys and secrets."
"On May 20, KrebsOnSecurity heard from Dylan Ayrey, the creator of TruffleHog, an open-source tool for discovering private keys and other secrets buried in code hosted at GitHub and other public platforms. Ayrey said CISA still hadn’t invalidated an RSA private key exposed in the Private-CISA repo that granted access to a GitHub app which is owned by the CISA enterprise account and installed on the CISA-IT GitHub organization with full access to all code repositories."
https://krebsonsecurity.com/2026/05/lawmakers-demand-answers-as-cisa-tries-to-contain-data-leak/
In conversationabout 6 days ago from infosec.exchangepermalink
Attachments
1. A screenshot of one part of the Public-CISA github file repo, showing exposed files as: B AWS-Workspace-Bookmarks-April-6-2026.html B AWS-Workspace-Firefox-Bookmarks.html #A AWS-Workspace-Firefox-Passwords.csv A AWS-Worskpace-Passwords-April-6-2026.csv S| Important AWS Tokens.txt Fi Kube-Config.txt
  https://media.infosec.exchange/infosec.exchange/media_attachments/files/116/619/204/346/413/400/original/e1050233c912b78d.png
2. Domain not in remote thumbnail source whitelist: krebsonsecurity.com
  Lawmakers Demand Answers as CISA Tries to Contain Data Leak
  Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other agency secrets…