Senate seeks classified briefing over CISA credential exposure
TL;DR Summary
Sen. Maggie Hassan has asked for an urgent classified briefing from acting CISA director Nick Andersen after reports that an exposed private contractor GitHub repository contained internal CISA and DHS credentials, logs and keys. Hassan seeks details on how the exposure happened, what was exposed, which contractor was responsible, and what steps are being taken to mitigate, with the briefing requested before June 5. CISA says there’s no indication sensitive data was compromised and is implementing additional safeguards.
- Senator requests "urgent" classified briefing on CISA's internal credential leaks Axios
- CISA Admin Leaked AWS GovCloud Keys on Github Krebs on Security
- ‘The Worst Leak That I’ve Witnessed’: U.S. Cybersecurity Agency Leaves Its Digital Keys Out in Public on GitHub Gizmodo
- America's top cyber-defense agency left a GitHub repo open with with passwords, keys, tokens – and incredibly obvious filenames The Register
- In stunning display of stupid, secret CISA credentials found in public GitHub repo Ars Technica
Reading Insights
Total Reads
1
Unique Readers
14
Time Saved
2 min
vs 3 min read
Condensed
83%
448 → 78 words
Want the full story? Read the original article
Read on Axios