Lawmakers Demand Answers as CISA Tries to Contain Data Leak
Summary
KrebsOnSecurity reports that a CISA contractor exposed AWS GovCloud keys and numerous internal secrets in a public GitHub repository, triggering lawmakers to demand answers. The piece highlights ongoing efforts to invalidate credentials, concerns about governance and workforce issues at CISA, and expert warnings about the potential impact of leaked keys on code repositories and CI/CD pipelines.