krebsonsecurity.com 7/13/2026, 3:27:05 PM · external

CISA Contractor Leaked AWS GovCloud Keys on GitHub for Six Months

Developing story campaign 2 articles tracked
CISA contractor leaks AWS GovCloud keys on GitHub for six months
CyberSIXT Evidence Panel
Primary Source cisa.gov

THE Cybersecurity and Infrastructure Security Agency (CISA) disclosed a significant data leak involving a contractor who published CISA credentials, including sensitive AWS GovCloud keys, on a public GitHub repository for six months. GitGuardian alerted CISA on May 15, 2026, about the repository containing 844 MB of sensitive data. CISA took over 48 hours to invalidate the leaked AWS keys due to system complexities.

The postmortem report highlighted the need for improvements in incident response and clearer reporting channels. Experts recommend continuous scanning for exposed secrets and better communication mechanisms with security researchers. CISA acknowledged gaps in its incident response and is undertaking actions to enhance its security protocols.

View Primary Source Via krebsonsecurity.com

Article by CyberSIXT

Timeline Coverage

Swipe to explore timeline