On May 14, 2026, GitGuardian found what looked like leaked CISA secrets in a public GitHub repository...
On May 14, 2026, GitGuardian found what looked like leaked CISA secrets in a public GitHub repository named Private-CISA. It held 844 MB of data across the working tree and Git history. The working tree was 498 MB; the rest was Git history and objects.
The repository contained:
CI/CD build logs and deployment workflow documentation.
Kubernetes manifests, ArgoCD application files, and secret-related YAML files.
Terraform infrastructure code and related bundles.
Secret CISA credentials found in public GitHub repo
CISA Exposes Secrets, Credentials in 'Private' Repo
‘The Worst Leak That I’ve Witnessed’: U.S. Cybersecurity Agency Leaves Its Digital Keys Out in Public on GitHub
Incidente colossale: fuga di chiavi digitali colpisce CISA, agenzia cybersecurity
America's top cyber-defense agency left a GitHub repo open with with passwords, keys, tokens – and incredibly obvious filenames
US cyber agency CISA exposed reams of passwords and cloud keys to the open web | TechCrunch
GitHub investigates internal repositories breach claimed by TeamPCP
GitHub Investigating TeamPCP Claimed Breach of ~4,000 Internal Repositories
GitHub Says 3,800 Repositories Breached—TeamPCP Hackers Demand $50,000
Time-to-Revoke: The Metric CISOs Need in the AI Exploit Era
