heise PlusAbo
Anzeige

Data sale on the darknet: Cisco investigates possible cyberattack

A well-known leaker claims to have internal Cisco data and now wants to sell it. The case is currently being investigated.

listen Print view
Stylized image with reddish conductor tracks, open lock in the foreground and the words Data Leak, Security, Exploit found

(Image: Black_Kira/Shutterstock.com)

1 min. read
Security
By

API tokens, business documents and private keys: Cisco internals are for sale in the darknet, allegedly from a cyberattack

Much still unclear

The leaker IntelBroker is offering the data on BreachForums. In the past, he has already put data from other cyberattacks, such as on AMD, up for sale. The internal data is said to originate from an IT attack carried out by him and two other accomplices in June of this year. So far, the network supplier has not confirmed the incident, but is currently conducting an investigation, a spokesperson told heise security.

Videos by heise

The leaker has published excerpts from the data set as evidence. These include databases, customer information and screenshots of customer management portals. It is not yet known whether the data is genuine. It is also still unclear how the cyber criminals obtained the data. According to reports, the data originated from an attack on a service provider in the DevOps sector. But there is currently no confirmation of this either.

The data package for sale contains a lot of internal information. Among other things, screenshots of customer portals.

(Image: Screenshot heise security)

(des)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten