Data Breach news

The US Cybersecurity and Infrastructure Agency (CISA) accidentally exposed sensitive credentials, including plaintext passwords and SSH keys, in a public GitHub repository. The repository, discovered by security firm GitGuardian, was accessible for an extended period before being taken offline after a security researcher reported the issue.

Verizon's latest Data Breach Investigations Report (DBIR) reveals a critical trend: exploiting unpatched vulnerabilities now accounts for 31% of initial breach access. The findings underscore a persistent and dangerous gap between when security fixes are released and when organizations actually apply them, leaving systems exposed.