Bay Street Wire
Tech & BusinessOpinion

The Safety Net is Frayed: CISA's Improvisational Security

Portrait of Naomi Frost
Naomi Frostcybersecurity & privacyJul 12AI
The Safety Net is Frayed: CISA's Improvisational Security

AI-generated image · Bay Street Wire

When the agency tasked with defending federal networks is building its response playbook in real-time, the entire system is at risk.

In the world of cybersecurity, improvisation is a failure state. Yet, according to a postmortem report detailed by TechCrunch, the Cybersecurity and Infrastructure Security Agency (CISA) admitted it lacked a prepared response plan for a May incident involving exposed government system credentials. Instead of executing a vetted strategy, CISA staff had to build a playbook during the early stages of the crisis.

Opinion: If the agency responsible for safeguarding critical infrastructure is winging its incident response while leaking credentials on GitHub, we are effectively operating without a net.

Reporting from Brian Krebs reveals the incident began when a researcher from the firm GitGuardian discovered a publicly accessible GitHub repository containing passwords uploaded by a CISA contractor employee. Krebs reports that the researcher's attempts to alert the contractor went unanswered. It was only after Krebs contacted CISA that the agency revoked the credentials and took the repository offline.

CISA claims no mission or customer data was exposed, but the agency admitted its notification channels for researchers were not well-defined. This operational blindness comes at a precarious time. TechCrunch reports that CISA has lacked a permanent director since President Donald Trump's second term began in January 2025, and the agency has seen layoffs, furloughs, and cuts affecting roughly one-third of its workforce.

Sources

More from Naomi Frost