Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Security Privacy

Cisco Investigates Breach After Stolen Data For Sale On Hacking Forum (bleepingcomputer.com) 9

Longtime Slashdot reader mprindle shares a report from BleepingComputer: Cisco has confirmed to BleepingComputer that it is investigating recent claims that it suffered a breach after a threat actor began selling allegedly stolen data on a hacking forum. [...] This statement comes after a well-known threat actor named "IntelBroker" said that he and two others called "EnergyWeaponUser and "zjj" breached Cisco on October 6, 2024, and stole a large amount of developer data from the company.

"Compromised data: Github projects, Gitlab Projects, SonarQube projects, Source code, hard coded credentials, Certificates, Customer SRCs, Cisco Confidential Documents, Jira tickets, API tokens, AWS Private buckets, Cisco Technology SRCs, Docker Builds, Azure Storage buckets, Private & Public keys, SSL Certificates, Cisco Premium Products & More!," reads the post to a hacking forum. IntelBroker also shared samples of the alleged stolen data, including a database, customer information, various customer documentation, and screenshots of customer management portals. However, the threat actor did not provide further details about how the data was obtained.

This discussion has been archived. No new comments can be posted.

Cisco Investigates Breach After Stolen Data For Sale On Hacking Forum

Comments Filter:
  • through the backdoor and stole it.

  • by iAmWaySmarterThanYou ( 10095012 ) on Tuesday October 15, 2024 @09:38PM (#64867813)

    As a former (angry) Cisco customer, my hope is they stole the code so they could fix all the stupid broken shit Cisco is too incompetent / apathetic to do anything about and release it to the wild.

    Free code from black hats can't be any worse than what Cisco already ships.

    Oh, and maybe the black hats will also offer a support and license contract that makes more sense than Cisco's.

    One can only hope.

  • Figures. Microsoft did not notice that Exchange Online was completely compromised in 2023 either. These companies are getting less and less capable. Boeing comes to mind.

  • I just received a letter yesterday that Change Healthcare CHC , a health care service company from CA had a "privacy event" aka got hacked starting Feb. 17, 2024. And why did they have my info as I live in the east coast..... So once AGAIN all my health info has been hacked ! This is the new norm !
  • by JThundley ( 631154 ) on Wednesday October 16, 2024 @11:39PM (#64871137)

    What did these idiots do, run their company on Cisco software? Of course they got hacked.

I'd rather just believe that it's done by little elves running around.

Working...