Comment by ceejayoz

12 hours ago

They fired the people who might've prevented that.

https://techcrunch.com/2025/03/11/doge-axes-cisa-red-team-st...

> Elon Musk’s Department of Government Efficiency (DOGE) has fired more than a hundred employees working for the U.S. government’s cybersecurity agency CISA, including “red team” staffers, two people affected by the layoffs told TechCrunch.

5 comments

ceejayoz

parineum 12 hours ago

Not posting secrets to public GitHub repos doesn't need red teaming.

ceejayoz 12 hours ago

A red team might well notice that the build process doesn't check for accidentally committed secrets.
jnovek 11 hours ago

Storing a bunch of passwords in a plain-text list that an individual can access violates zero-trust AND least-privilege which I think a red team might have some opinions on.
wil421 9 hours ago

At my job the commits wouldn’t have even made it to our private GitHub repo. The scanners would’ve rejected it when you tried to push a commit.
They find keys and tokens all the time.
gumby271 12 hours ago

And yet, here we are.