A Nightwing contractor working for the Cybersecurity and Infrastructure Security Agency (CISA) publicly exposed highly privileged AWS GovCloud credentials, plaintext passwords, and sensitive internal system files through a GitHub repository. The Private-CISA repository remained publicly accessible from November 13, 2025 until mid-May 2026, when independent researchers alerted CISA to the exposure. On May 15, 2026, Guillaume Valadon, a […]
The post CISA Admin Exposes AWS GovCloud Credentials on GitHub appeared first on Cyber Security News.