.webp)
Cisco faces a data breach as hacker IntelBroker claims to have stolen sensitive information
Cisco confirmed on Friday that it had experienced a data breach after a hacker, known as IntelBroker, announced having stolen sensitive information from the company. According to IntelBroker, who made the announcement on a cybercrime forum on October 14, the hacker says the breach access was based on several materials like GitHub and SonarQube projects, source code, hardcoded credentials, confidential documents, API tokens, and much more.
The hacker also claimed to have obtained source codes from firms like Microsoft, AT&T, and Bank of America and published screenshots purporting to provide evidence of access to management interfaces and other internal documents. In response, Cisco started an investigation and determined the hacker hadn't accessed core systems but was indeed extracting data from a public-facing DevHub environment, a resource center intended for the sharing of source code and scripts with its customers.
Cisco said that the small number of files with unauthorized public download privileges may have been inadvertently published, but said it has found no confidential information, such as PII or financial information, associated with the leaked documents. The company has disabled public access to the affected website.
IntelBroker has shown to specialize in large organizations, but a number of Cisco's peers have indeed confirmed breaches, though many have played down the incidents as not being that severe. For instance, Deloitte said the sensitive data was not compromised in its recent breach; Cisco is investigating deeper for further clarity on the situation.
.webp)
.webp)
