The US federal cybersecurity agency CISA did not have a prepared response plan for a cybersecurity incident in May.
The agency revealed that its staff had to spend time building a playbook during the early stages of the incident, after an investigative reporter notified them that a contractor had publicly exposed sensitive keys and credentials for accessing US government systems.
CISA has made changes to make it easier and faster for researchers to contact the agency, and no customer or mission data was exposed in the incident. The agency has been without a permanent director since January 2025 and has been affected by cuts, furloughs, and layoffs.



