Secret CISA credentials found in public GitHub repo
Security researcher Brian Krebs brings us the news that America’s Cybersecurity & Infrastructure Agency CISA has had a large store of plaintext passwords, SSH private keys, tokens, and “other sensitive CISA assets” exposed in a public GitHub repo since at least November 2025. …