Which DOGE employee put this file on GitHub?

throwaway5752 4 hours ago | parent | next [-]

"I didn't create the epidemic, I just fired all the doctors and dissolved the medical schools"

Security doesn't happen by magic. It is enforced by process, maintained by people and systems built and run by people. Furthermore, when people are under stress and underresourced, they make more mistakes. This was inevitable given the budget cuts.

You can't fire everyone at AWS and say one intern will support it, and say that it is a profitable and sustainable restructuring. Any fool can see that will fail, so if it were actually implemented by someone who is not a fool, you can conclude it is intentional.

▲

parineum 4 hours ago | parent [-]

The analogy to not posting secrets to the public isn't medical schools and doctors, it's a sign in the bathroom that says "employees must wash hands".

▲

ceejayoz 4 hours ago | parent [-]

They replaced the people who put the signs up with people who think signs are too woke.

▲

stackedinserter 2 hours ago | parent [-]

[flagged]

	▲	ceejayoz 2 hours ago \| parent [-]
		We can know, and we do know. https://techcrunch.com/2025/03/11/doge-axes-cisa-red-team-st... > Elon Musk’s Department of Government Efficiency (DOGE) has fired more than a hundred employees working for the U.S. government’s cybersecurity agency CISA, including “red team” staffers, two people affected by the layoffs told TechCrunch. https://www.nytimes.com/2025/04/05/us/politics/trump-loomer-... > For four years, [Trump] nurtured deep resentments about CISA, which had declared that the 2020 election was one of the best run in history, undercutting his false claims that he had been cheated of victory. Weeks after taking office this year, he began a campaign of dismantlement. > Federal programs that monitored foreign influence and disinformation have been eliminated. Key elements of the warning systems intended to flag possible intrusions into voting software have also been degraded; the effects may not be known until the next major election. And contractors who worked with local election officials to perform cybersecurity testing, usually with federal funding, have found the deals canceled. > In early March, CISA — which is nested inside the Department of Homeland Security — cut more than $10 million in funding to two critical cybersecurity intelligence-sharing programs that helped detect and deter cyberattacks and that alerted state and local governments about them. One program was dedicated to election security, and the other to broader government assets, including electrical grids.

▲

ceejayoz 4 hours ago | parent | prev | next [-]

They fired the people who might've prevented that.

https://techcrunch.com/2025/03/11/doge-axes-cisa-red-team-st...

> Elon Musk’s Department of Government Efficiency (DOGE) has fired more than a hundred employees working for the U.S. government’s cybersecurity agency CISA, including “red team” staffers, two people affected by the layoffs told TechCrunch.

▲

parineum 4 hours ago | parent [-]

Not posting secrets to public GitHub repos doesn't need red teaming.

	▲	wil421 2 hours ago \| parent \| next [-]
		At my job the commits wouldn’t have even made it to our private GitHub repo. The scanners would’ve rejected it when you tried to push a commit. They find keys and tokens all the time.
	▲	jnovek 3 hours ago \| parent \| prev \| next [-]
		Storing a bunch of passwords in a plain-text list that an individual can access violates zero-trust AND least-privilege which I think a red team might have some opinions on.
	▲	ceejayoz 4 hours ago \| parent \| prev \| next [-]
		A red team might well notice that the build process doesn't check for accidentally committed secrets.
	▲	gumby271 4 hours ago \| parent \| prev [-]
		And yet, here we are.

▲

skywhopper 4 hours ago | parent | prev [-]

The one who fired the team that prevented this sort of thing.

▲

strictnein 4 hours ago | parent | next [-]

What team prevented someone from uploading sensitive information to public sites? This is a billion dollar a year industry (Digital Loss Prevention) and all the solutions suck.

▲

SV_BubbleTime 4 hours ago | parent | prev | next [-]

I’m not sure you can complain that the people who should prevent this type of thing are having their funding reduced what are the example is they just did this exact thing.

▲

parineum 4 hours ago | parent | prev [-]

I really hope they didn't also fire the "don't shit your pants" team or that office is going to smell really bad.

	▲	malcolmgreaves 4 hours ago \| parent [-]
		DOGE only fired those who were loyal to the facist. Anyone who is competent was illegally fired.