iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
IntelBroker has allegedly leaked part of the data it exfiltrated from Cisco last month as proof of the breach’s legitimacy.
In October, IntelBroker said it had gained access to Cisco’s systems, stealing large amounts of data belonging to it and its customers.
Data allegedly includes “Github projects, Gitlab Projects, SonarQube projects, source code, hard-coded credentials, certificates, customer SRCs, Cisco confidential documents, Jira tickets, API tokens, AWS Private buckets, Cisco Technology SRCs, Docker Builds, Azure Storage buckets, Private & Public keys, SSL Certificates, Cisco Premium Products & More!”
Cisco quickly began investigating the claims, confirming that data was exfiltrated. However, the company said that its own systems were not breached, and the threat actors accessed a public-facing DevHub environment.
Now, IntelBroker has published a small portion of the data.
“Today, I have shared the Cisco partial Breach for you to download. Thanks for reading and enjoy!” Intelbroker said.
Intelbroker acknowledged that it and its team at CyberN-----s accessed a DevHub instance, which, it said, Cisco accidentally left open, adding that they exfiltrated 4.5 terabytes of data.
The partial upload allegedly contains 2.9 gigabytes of data, made up of Cisco C9800-SW-iosxe-wlc.16.11.01, Cisco IOS XE & XR, Cisco ISE, Cisco SASE, Cisco Umbrella and Cisco Webex.
“Hopefully this proves the legitimacy of the breach to others wanting to buy the full version,” added IntelBroker.
When asked for more information by Cyber Daily, Cisco refused to provide comment.
Be the first to hear the latest developments in the cyber industry.
