The CISA GitHub Leak: What Six Months of Exposed Credentials Tell Us About Systemic Security Failures
A contractor for the U.S. Cybersecurity and Infrastructure Security Agency maintained a public GitHub repository containing AWS GovCloud credentials, plaintext passwords, and DevSecOps files for six months before researchers intervened.