Lawmakers Demand Answers as CISA Tries to Contain Data Leak
What to do if you were affected
- If you have an account with this organization, change your password and enable two-factor authentication.
- Be cautious of phishing emails, calls, or texts that reference this incident.
Details
Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other agency secrets on a public GitHub account. The inquiry comes as CISA is still struggling to contain the breach and invalidate the leaked credentials.
Frequently asked questions
What is the Lawmakers Demand Answers as CISA Tries to Contain Data Leak incident?
Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other...
When did the incident happen?
This incident was disclosed on May 22, 2026.
What should I do if I was affected?
If you have an account with this organization, change your password and enable two-factor authentication. Be cautious of phishing emails, calls, or texts that reference this incident.
Related breaches