Hackers are selling confidential Cisco data, including GitHub repositories and API tokens, on underground forums. This alleged breach was announced by IntelBroker, a well-known threat actor, who claimed to have gained access to Cisco's systems and data through a third-party DevOps and software development platform used by Cisco.
IntelBroker shared screenshots of the stolen data as evidence, which includes:
GitHub and GitLab Projects: Source code, confidential design files, and product files
Credentials and API Tokens: Hardcoded credentials, customer service data, and public and private keys
Cloud Projects: Dozens of projects related to Azure and AWS, mostly development-related
Cisco has confirmed that it's investigating these claims, but so far, they haven't found any evidence of their systems being impacted. The company has engaged law enforcement and will notify customers if their confidential information has been obtained.
Other companies may have been affected too, including AT&T, Verizon, T-Mobile US, Vodafone, and Microsoft ¹. However, the exact extent of the breach is still unknown.
Comentários