[SECURITY]■ STORY TIMELINE
CISA DETAILS LESSONS FROM MONTHS-LONG GITHUB LEAK
The Cybersecurity and Infrastructure Security Agency has released a postmortem on a significant security breach where a contractor accidentally published internal credentials—including AWS Govcloud keys—to a public GitHub repository. The credentials remained exposed for nearly six months before KrebsOnSecurity alerted the agency.
Krebs on Security+0m
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a postmortem on a data leak in which a contractor…