{"id":253523,"date":"2026-05-20T15:25:00","date_gmt":"2026-05-20T19:25:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/20\/reported-exposure-of-federal-cybersecurity-agency-login-data-prompts-hill-scrutiny\/"},"modified":"2026-05-23T14:05:34","modified_gmt":"2026-05-23T18:05:34","slug":"reported-exposure-of-federal-cybersecurity-agency-login-data-prompts-hill-scrutiny","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/20\/reported-exposure-of-federal-cybersecurity-agency-login-data-prompts-hill-scrutiny\/","title":{"rendered":"Reported exposure of federal cybersecurity agency login data prompts Hill scrutiny"},"content":{"rendered":"<p><a href=\"https:\/\/www.govexec.com\/technology\/2026\/05\/cisa-leaked-agency-credentials-congressional-scrutiny\/413673\/\">Reported exposure of federal cybersecurity agency login data prompts Hill scrutiny<\/a><\/p>\n<p><a href=\"https:\/\/www.govexec.com\/technology\/2026\/05\/cisa-leaked-agency-credentials-congressional-scrutiny\/413673\/\">https:\/\/www.govexec.com\/technology\/2026\/05\/cisa-leaked-agency-credentials-congressional-scrutiny\/413673\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-20 15:25:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.govexec.com\">www.govexec.com<\/a><\/p>\n<p>Top Democratic lawmakers on the House Homeland Security Committee have requested a briefing from Cybersecurity and Infrastructure Security Agency acting Director Nick Andersen following reports of a contractor-linked leak of internal agency credentials.<\/p>\n<p>Independent journalist Brian Krebs reported Monday that researchers identified a publicly accessible GitHub repository connected to government contractor Nightwing that allegedly exposed a broad collection of sensitive access information tied to systems used by CISA and its parent agency, the Department of Homeland Security.<\/p>\n<p>\u201cWe demand a briefing as soon as possible on how this serious security lapse occurred, any potential security consequences, remediation activities, corrective actions related to the contractor personnel involved, and efforts to monitor for and prevent similar activity from occurring in the future,\u201d wrote Rep. Bennie Thompson of Mississippi, the committee\u2019s ranking member, and Rep. Delia Ramirez of Illinois, the ranking member of the panel\u2019s cyber subcommittee, in a Tuesday letter shared with Nextgov\/FCW.<\/p>\n<p>The materials, stored in a repository labeled \u201cPrivate CISA,\u201d reportedly included items like authentication credentials, AWS GovCloud information and other sensitive data. The repository was later removed from public view. Nextgov\/FCW has not independently verified its contents.<\/p>\n<p>\u201cSecurity researchers said the content openly available online included information on \u2018how CISA builds, tests and deploys software internally,\u2019 and they described it as \u2018one of the most egregious government data leaks in recent history.\u2019 We agree,\u201d said the letter, referring to the contents of Krebs&#8217;\u00a0reporting.<\/p>\n<p>A Nightwing spokesperson referred inquiries to CISA.<\/p>\n<p>\u201cWe do not comment on congressional correspondence but respond to members directly,\u201d an agency spokesperson said.<\/p>\n<p>A separate letter to Andersen was sent by Sen. Maggie Hassan, D-N.H., Axios reported Tuesday.<\/p>\n<p>CISA has undergone&#8230;<\/p>\n<p><a href=\"https:\/\/www.govexec.com\/technology\/2026\/05\/cisa-leaked-agency-credentials-congressional-scrutiny\/413673\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Reported exposure of federal cybersecurity agency login data prompts Hill scrutiny https:\/\/www.govexec.com\/technology\/2026\/05\/cisa-leaked-agency-credentials-congressional-scrutiny\/413673\/ Publish Date: 2026-05-20&#8230;<\/p>\n","protected":false},"author":1,"featured_media":253524,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cdn.govexec.com\/media\/img\/cd\/2026\/05\/20\/052026ThompsonNG-1\/open-graph.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[57],"class_list":["post-253523","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-security"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/253523"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=253523"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/253523\/revisions"}],"predecessor-version":[{"id":253525,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/253523\/revisions\/253525"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/253524"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=253523"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=253523"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=253523"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}