Cisco has confirmed that the data shared by the threat actor IntelBroker on a cybercrime forum was obtained from its DevHub environment.
Cisco has confirmed that the data shared by the threat actor IntelBroker on a cybercrime forum was obtained from its DevHub environment.
IntelBroker is alleged to have accessed various resources, including GitHub and GitLab projects, SonarQube projects, source code, hard-coded credentials, certificates, customer source code repositories, confidential documents, Jira tickets, API tokens, AWS private buckets, company technology source code, Docker builds, Azure storage buckets, private and public keys, SSL certificates, Cisco premium products, and other sensitive information.
This breach highlights serious security concerns, and such incidents can cause significant anxiety among stakeholders.
“Hello BreachForums Community, Today, I am selling the Cisco breach that recently happened (6/10/2024)” reads the message published by IntelBroker. “Compromised data: Github projects, Gitlab Projects, SonarQube projects, Source code, hard-coded credentials, Certificates, Customer SRCs, Cisco Confidential Documents, Jira tickets, API tokens, AWS Private buckets, Cisco Technology SRCs, Docker Builds, Azure Storage buckets, Private & Public keys, SSL Certificates, Cisco Premium Products & More!”
Cisco responded by saying it was investigating the breach, and has now come forward with additional information.
“Based on our investigations, we are confident that there has been no breach of our systems,” Cisco said. “We have determined that the data in question is on a public-facing DevHub environment—a Cisco resource center that enables us to support our community by making available software code, scripts, etc. for customers to use as needed. We have determined that a small number of files that were not authorized for public download may have been published.”
The announcement also indicated no evidence of personally identifiable information (PII) or financial data being compromised in this incident; however, Cisco is continuing its investigation.
Want your digital assets to be protected?
CyberShelter provides innovative and modern cybersecurity products and niche services to individuals and organization against all kinds of cyber threats.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.