A group of threat actors, led by the notorious hacker known as IntelBroker, has claimed responsibility for a significant data breach at Cisco Systems, Inc. The hackers allege they have stolen a vast amount of sensitive information and are now offering it for sale on the dark web.
The breach, reportedly occurring on October 10, 2024, was announced on Breach Forums by IntelBroker, who collaborated with individuals identified as EnergyWeaponUser and zjj.
The compromised data purportedly includes a wide range of sensitive materials such as GitHub and GitLab projects, SonarQube projects, source code, hardcoded credentials, certificates, confidential Cisco documents, Jira tickets, API tokens, AWS private buckets, Docker builds, Azure storage buckets, private and public keys, SSL certificates, and Cisco premium products.
Several high-profile companies are allegedly affected by this breach. The list of impacted firms includes major telecommunications and financial institutions like Verizon, AT&T, Bank of America, Barclays, British Telecom, Microsoft, Vodafone, and Chevron. The hackers have provided samples of the stolen data to substantiate their claims.
Analyse Any Suspicious Files With ANY.RUN: Intergarte With You Security Team -> Try for Free
Cisco has acknowledged the reports and is actively investigating the situation. A spokesperson for the company stated that they are aware of the allegations and have launched an investigation to assess the validity of these claims.
IntelBroker has a history of high-profile breaches. Earlier in 2024, the hacker claimed responsibility for attacks on companies such as Apple and AMD. These incidents highlight a persistent threat to major corporations from well-organized cybercriminal groups.
The stolen data is being offered for sale in exchange for Monero (XMR), a cryptocurrency known for its privacy features. Cybercriminals commonly use this method to maintain anonymity and avoid detection by authorities.
As investigations continue, the cybersecurity community is closely monitoring the situation. The breach underscores the critical need for robust security measures to protect sensitive corporate data from increasingly sophisticated cyber threats.
How to Choose an ultimate Managed SIEM solution for Your Security Team -> Download Free Guide(PDF)