我们在不到一天内成功下架了一个CISA GitHub泄露事件
GitGuardian分享了如何在26小时内发现并促成美国网络安全和基础设施安全局(CISA)GitHub仓库中的敏感信息泄露被下架的完整过程。文章详细介绍了从发现泄露、验证信息、联系相关方到最终成功移除的快速响应流程,强调了安全团队协作和高效沟通的重要性。
相关报道
Lawmakers from both chambers of Congress are demanding answers from CISA after a contractor deliberately published AWS GovCloud keys and other sensitive agency data on a public GitHub account. The agency is still working to contain the breach and invalidate the leaked credentials.