THREAT OPS › Threat News › Lawmakers Demand Answers as CISA Tries to Contain Data Leak
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
<p>Lawmakers in both houses of Congress are demanding answers from the <strong>U.S. Cybersecurity & Infrastructure Security Agency</strong> (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other agency secrets on a public <strong>GitHub</strong> account. The inquiry comes as CISA is still struggling to contain
MITRE ATT&CK techniques
- Private KeysT1552.004
- Code RepositoriesT1593.003
- CredentialsT1589.001
- Code RepositoriesT1213.003
- Code RepositoriesAML.T0095.000
Indicators of compromise
- https://www.hassan.senate.gov/imo/media/doc/letter_to_cisa_re_data_security.pdfurl
- https://www.cybersecuritydive.com/news/cisa-cybersecurity-division-reorganization/812155/url
- https://trufflesecurity.com/blog/cisa-leaked-admin-github-token-remained-live-2-daysurl
- https://risky.biz/RB838/url
- federalnewsnetwork.comdomain