THREATOPS
THREAT OPSThreat News › Lessons Learned from CISA’s Recent GitHub Leak

Lessons Learned from CISA’s Recent GitHub Leak

medkrebsPublished 2026-07-13

<p>The <strong>Cybersecurity and Infrastructure Security Agency</strong> (CISA) has issued a postmortem on a recent data leak in which a contractor published dozens of internal CISA credentials &#8212; including AWS Govcloud keys &#8212; in a public GitHub repository for almost six months before being notified by KrebsOnSecurity. Experts say the gaps identified in the agency&#8217;s initial respon

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://krebsonsecurity.com/2026/07/lessons-learned-from-cisas-recent-github-leak/