CISA contractor exposes sensitive credentials in public GitHub repository

Source:Krebs on Security

02 — Who / Subject

CISA, Nightwing (contractor), GitGuardian, KrebsOnSecurity, Seralys

03 — Where / Locus

USA

04 — When / Temporality

May 19, 2026

Verified: May 19, 2026

05 — Why / Core Summary

"A CISA contractor maintained a public GitHub repository named 'Private-CISA' containing sensitive AWS GovCloud credentials and internal system passwords. The repository was discovered by GitGuardian and reported by KrebsOnSecurity and Seralys. CISA is investigating the incident, stating no evidence of compromise yet, while the contractor's account has been taken offline."

Conflict Analysis

A significant security breach involving government infrastructure credentials. The incinformationnt highlights risks in contractor security hygiene and the use of public repositories for internal synchronization.

Recommended Background Resource

Affiliate / AdAI Curation

This Is How They Tell Me the World Ends: The Cyberweapons Arms Race

Author: Nicole Perlroth

This book provides a deep dive into the vulnerabilities of the global digital infrastructure and the risks posed by the proliferation of cyberweapons and supply chain weaknesses, which is highly relevant to understanding the systemic risks of contractor-managed government data.

Explore Background Book (Amazon)

As an Amazon Associate, COMPAMIR earns from qualifying purchases.

Post