TL;DR
CISA admitted it had no prepared playbook for a cybersecurity incident. A contractor leaked government credentials on GitHub. A journalist had to alert the agency.
CISA's postmortem reveals staff had to build a response plan in real time after a contractor exposed AWS keys and passwords on a public GitHub repository.
CISA admitted it had no prepared playbook for a cybersecurity incident. A c...
