US cyber-defense agency leaks credentials via unsecured GitHub repo

By PulseAugur Editorial · [2 sources] · 2026-05-19 17:49

America's top cyber-defense agency inadvertently exposed sensitive credentials, including passwords and API keys, through an unsecured GitHub repository. The repository's filenames were highly conspicuous, making the leaked information easily discoverable. This incident highlights a significant security lapse within a government entity responsible for national cybersecurity. AI

IMPACT Highlights the ongoing risks of credential exposure in cloud-based development environments, even for security-focused organizations.

RANK_REASON Security lapse involving a government agency's exposed credentials on a public platform.

Read on The Register — AI →

AI-generated summary · Google Gemini · from 2 sources. How we write summaries →

US cyber-defense agency leaks credentials via unsecured GitHub repo

COVERAGE [2]

The Register — AI TIER_1 English(EN) · 2026-05-19 17:49

America's top cyber-defense agency left a GitHub repo open with with passwords, keys, tokens – and incredibly obvious filenames

I wonder what's in 'external-secret-repo-creds.yaml' and 'AWS-Workspace-Firefox-Passwords.csv'?
The Register — AI TIER_1 English(EN) · 2026-05-19 17:49

America's top cyber-defense agency left a GitHub repo open with passwords, keys, tokens – and incredibly obvious filenames

I wonder what's in 'external-secret-repo-creds.yaml' and 'AWS-Workspace-Firefox-Passwords.csv'?

COVERAGE [2]

America's top cyber-defense agency left a GitHub repo open with with passwords, keys, tokens – and incredibly obvious filenames

America's top cyber-defense agency left a GitHub repo open with passwords, keys, tokens – and incredibly obvious filenames

RELATED ENTITIES

RELATED TOPICS