New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 11:47:47 GMT

ncrazed@fd00.space — Tue, 19 May 2026 11:47:47 GMT

@briankrebs are these LLM instructions or a note to self kind of deal?

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 07:47:22 GMT

airwhale@beige.party — Tue, 19 May 2026 07:47:22 GMT

@briankrebs

So, does any of keys unlock the repo where the unredacted Epstein files are stored?

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 06:49:55 GMT

okuna@social.tchncs.de — Tue, 19 May 2026 06:49:55 GMT

@briankrebs make something idiot proof and nature will create a better idiot

Scnr

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 06:30:31 GMT

christopherkunz@chaos.social — Tue, 19 May 2026 06:30:31 GMT

@Legit_Spaghetti @briankrebs "recent history" as in "this week".

And it's only Tuesday, so...

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 06:26:17 GMT

grumpydad@infosec.exchange — Tue, 19 May 2026 06:26:17 GMT

@briankrebs There's no way this is not intentional.

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 06:24:14 GMT

ppxl@social.tchncs.de — Tue, 19 May 2026 06:24:14 GMT

@briankrebs can't make this shit up anyway I am off for some gardening, enough of those pesky computers

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 06:15:12 GMT

hennichodernich@radiosocial.de — Tue, 19 May 2026 06:15:12 GMT

@briankrebs Worskpace

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 05:03:23 GMT

thetomas@social.toot9.de — Tue, 19 May 2026 05:03:23 GMT

@briankrebs Seems this dude doesn't know how git works and the organisation did not enforced Separation of work and private stuff (on different devices!).

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 04:27:41 GMT

lawyersgunsnmoney@mstdn.social — Tue, 19 May 2026 04:27:41 GMT

@chux0r @briankrebs This is correct. The regime shitcanned everyone associated Biden’s CISA, including the contractors and brought their own people in. Watched it happen

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 04:26:07 GMT

snakeoilsalesman@mastodon.social — Tue, 19 May 2026 04:26:07 GMT

@briankrebs csv password docs... wow, just wow.

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 01:42:15 GMT

jab01701mid@mastodon.social — Tue, 19 May 2026 01:42:15 GMT

@GerardThornley @briankrebs I guess you have to store secrets somewhere, in your source or CI/CD pipeline playbook. I hope people are not checking in private keys, or the CEO's email password.

But govcloud IIRC is basically AWS but "secure for fedramp". Then using "github" for your source control is like the Manhattan Project keeping their notebooks in the local college library, but in a locked room.

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 01:04:50 GMT

gerardthornley@hachyderm.io — Tue, 19 May 2026 01:04:50 GMT

@jab01701mid @briankrebs isn't the real wtf storing secrets in a git repo, let alone pushing it to github?

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 01:01:53 GMT

justcameheretosay@mastodon.social — Tue, 19 May 2026 01:01:53 GMT

@briankrebs

One more Nightwing LinkedIn post, from three days ago.

#definingtheedge | Nightwing

Cyber threats in the space domain aren’t theoretical, they’re persistent, asymmetric, and accelerating. From ground infrastructure to on-orbit systems, Nightwing helps uncover critical vulnerabilities before adversaries can exploit them, strengthening the resilience of the architectures our national security depends on. That’s why we’re proud to have sponsored Tectonic and Payload's Inside the Dome this week. Bringing together leaders across government and industry it’s clear that cyber resiliency isn’t optional – it’s foundational to every space mission. United States Space Force // United States Department of War #DefiningTheEdge

LinkedIn (www.linkedin.com)

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 00:54:18 GMT

xyhhx@438punk.house — Tue, 19 May 2026 00:54:18 GMT

@briankrebs bruh what the fuck lmao

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 00:33:06 GMT

boombastic@social.outhill.cc — Tue, 19 May 2026 00:33:06 GMT

@briankrebs this is unbelievable

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 00:29:33 GMT

spacelifeform@infosec.exchange — Tue, 19 May 2026 00:29:33 GMT

@briankrebs

CISA should know better than to use Cloud. AWS in particular. SMH.

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 00:26:25 GMT

dogriley@opensocial.media — Tue, 19 May 2026 00:26:25 GMT

@jab01701mid @briankrebs

At some point its intentional. When you have that type of access it should be assumed it is.

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 00:04:57 GMT

viss@mastodon.social — Tue, 19 May 2026 00:04:57 GMT

@bbdd333 @briankrebs no logs no crime!

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Tue, 19 May 2026 00:04:24 GMT

bbdd333@infosec.exchange — Tue, 19 May 2026 00:04:24 GMT

@briankrebs “Currently, there is no indication that any sEnSiTIVe datA was compromised as a result of this incident,” the CISA spokesperson wrote. "I mean, of course, sensitive data was exposed, but not sEnSiTIVe datA."

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Mon, 18 May 2026 23:29:23 GMT

krypt3ia@infosec.exchange — Mon, 18 May 2026 23:29:23 GMT

@Viss @briankrebs No bid contract

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Mon, 18 May 2026 23:28:39 GMT

viss@mastodon.social — Mon, 18 May 2026 23:28:39 GMT

@krypt3ia @briankrebs which is ironic, because ive talked to almost half a dozen shops who cisa was paying as their outsourced assessment teams, but when i asked to be one of those they told me to fuck off, then 'how dare you'd me because i asked to be paid for my work. i have all the receipts. made sure to keep those emails tagged.

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Mon, 18 May 2026 23:24:28 GMT

krypt3ia@infosec.exchange — Mon, 18 May 2026 23:24:28 GMT

@briankrebs Our tax dollars at work

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Mon, 18 May 2026 23:12:15 GMT

briankrebs@infosec.exchange — Mon, 18 May 2026 23:12:15 GMT

@richlv from dude's exposed GitHub repo.

Reply to New, by me: CISA Admin Leaked AWS GovCloud Keys on GitHub on Mon, 18 May 2026 23:01:16 GMT

richlv@mastodon.social — Mon, 18 May 2026 23:01:16 GMT

@briankrebs Where are these from? Didn’t see in the article.