CISA Contractor Exposed AWS GovCloud Credentials on Public GitHub Repository
By
LelouBil
2d ago· 5 min readenNews
75/100
Toasty
Bagelometer↗
Not artisan, but a perfectly fine bagel. Hits the spot.
Score75TypenewsSentimentnegative
Summary
A contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository until recently that exposed credentials to highly privileged AWS GovCloud accounts and internal CISA systems. Security researcher Guillaume Valadon from GitGuardian discovered the leak, which included detailed files about CISA's internal software development processes. Security experts describe this as one of the most egregious government data leaks in recent history, exposing sensitive government cloud infrastructure credentials publicly.
Key quotes
· 3 pulledSecurity experts said the public archive included files detailing how CISA builds, tests and deploys software internally, and that it represents one of the most egregious government data leaks in recent history.
Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems.
On May 15, KrebsOnSecurity heard from Guillaume Valadon, a researcher with the security firm GitGuardian.
Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA syste
