Cisco has confirmed to BleepingComputer that it is investigating recent claims of a breach after stolen data was put up for sale on a hacking forum. A threat actor named IntelBroker claimed to have gained access to Cisco-related files, including developer data and customer information, on June 10, 2024.
IntelBroker shared samples of the allegedly stolen data, which include GitHub projects, Gitlab Projects, SonarQube projects, source code, hard-coded credentials, certificates, customer information, and more. The breach is believed to have originated from a third-party managed services provider for DevOps and software development.
Cisco’s investigation into the claim is ongoing. It is unclear if the Cisco breach is related to IntelBroker’s previous breaches of T-Mobile, AMD, and Apple in June. BleepingComputer attempted to contact the third-party vendor but did not receive a response.
Source: https://www.bleepingcomputer.com/news/security/cisco-investigates-breach-after-stolen-data-for-sale-on-hacking-forum/