Cisco has reassured customers and the public that its systems remain secure following recent social media posts and a data breach by a threat actor known as IntelBroker. The company maintains that the released files were part of a previously identified data set from an incident in October 2024 and do not represent a new breach.
On December 25, 2024, at 17:07 EST, IntelBroker posted on the social media platform X about releasing additional data. Shortly thereafter, at 17:40 EST, the actor uploaded 4.45 GB of data on BreachForums for free. Cisco’s analysis confirms that the newly posted data aligns with the data set previously identified during its October 14, 2024 investigation.
“We are confident that there has been no breach of our systems, and we have not identified any information in the content that an actor could have used to access any of our production or enterprise environments,” Cisco stated in an updated event response.
The incident, first reported in November 2024, involved the inadvertent exposure of certain files on Cisco’s Dev Hub platform due to a configuration error. These files, which were not intended for public access, were reportedly downloaded by the threat actor and later released on online forums.
Cisco has been actively investigating the incident and has taken steps to address the configuration error and restore secure access to Dev Hub. The company has also been working to identify and notify any customers whose information may have been present in the exposed files.
“We compiled a list of files that we believe the actor downloaded from those publicly accessible devhub.cisco.com pages and assessed that some of those files related to a limited set of CX Professional Services customers,” Cisco explained. “We notified these customers directly, provided them with a copy of the relevant files, and have offered our assistance in reviewing those files.”
Related Posts:
- Cisco releases patch to fix three high security bugs
- Hackers use Cisco Router flaws to attack Iran, 3,500 routers hacked
- Mozilla Confirms: Intel CPU Vulnerability Could Be Used To Extract User Information
- Cisco releases the security updates to fix flaws in multiple Cisco products
- Cisco Smart Install Protocol was misused, tens of thousands of critical infrastructure may be attacked
