Possible Cisco Source Code Theft

OmegaBlac writes "According to Ars Technica, a Russian security site is claiming that Cisco's corporate network was comprimised and about 800MB of Cisco's source code for IOS Operating System version 12.3 was stolen. I guess Cisco forgot to implement their own Self Defending Network solutions."

Not just possible, truthful

[CptChipJew]

This did actually happen. A friend in an IRC channel I frequent was pasting large portions of it to show off.

I can't help much see a nearby future full of Cisco-powered site takeovers :(

Full text translation

[sydb]

CiSCO IOS?
SecurityLab, 13 2004 CISCO IOS 12.3, 12.3t, CISCO. 800 .

, - Cisco System. Cisco System .

franz #darknet@EFnet IRC ( 2.5 ) .

100 ipv6_tcp.c ipv6_discovery_test.c.

Hope that helps!

Thank God ..

[Anonymous Coward]

I use windows RRAS as my router and not the damned (potentially) insecure Cisco kit ;-)

Re:rah rah rah you scumbags

[Chicane-UK]

Darl??

Rumour has it ...

[BabyDave]

... that their remote access software had a default username/password built in that couldn't be disabled. A high-level Ciso executive has threatened to sue the software providers for including such a stupid 'feature' [slashdot.org] in their product

Re:This has happened before

[Anonymous Coward]

"Time to go unplug your internet connection until 12.4 is released ..."

If you leave your mailing address I'll send you a postcard when it does.

Re:May not lead to anything

[curator_thew]

"Instead they probably have experts pooring over ios every day."

Unfortunately those experts are figuring out how to draw the release structure diagram and name the branches. I don't think cisco engineers have time to work on new code, there's too much old code to figure out.

Oh Really? No.

[Frequanaut]

Seriously, A friend of mine, in an icq conversation told me it wasn't true. Plus my mom said so as well.

Re:Stolen...?

[real_smiff]

ah, wait a sec (while i fetch me textbook of /. answers).. yes... i see, "it was not stolen... it was copy-right in-fringe-ment".. how was that? :)

Re:Time for a new motto

[ch-chuck]

How about, " The next Slashdot story will be ready soon, but readers of ArsTechnica can beat the rush and see it early!"

Thats not all it does.

[CodePyro]

"I guess Cisco forgot to implement their own Self Defending Network solutions"

No they did implement it. But when it found out that it was outnumbered by the hackers, the self-surrender module(also know as the french module) went into effect.

Or, to paraphrase...

[FreeUser]

Seriously, A friend of mine, in an icq conversation told me it wasn't true. Plus my mom said so as well.

Translation: Accept information only from Official Sources(tm).

Any reports, of any event, not vetted by Your Official Corporate Public Relations Officer(tm) isn't real and has no validity.

Do not accept word of mouth. Healthy kepticism is not sufficient (for the facts may speak for themselves and undermine Our Official Position(tm)); you are to ignore any anectdotes, any word of mouth reporting, completely and utterly.

Indeed, you shall respond to any unofficial information with disparagement and hostility, as is your duty as a drone Consumer(tm).

Accept the Party Line. It is the Truth(tm), all else is Heresy.

Thank you.

Your Cisco Security.
("Stooges R Us")

Re:This has happened before

[caluml]

Regarding your sig: This post is encrypted twice with ROT-13. Documenting or attempting to crack this encryption is illegal.

I'm not trying to break the encryption. I'm just looking at the ciphertext, and reading my own stuff into it. :)

Juniper / KAME comments

[MavEtJu]

Did somebody grep for "Juniper coders are weenies?"