Cisco data breach overview:
- Who: Cisco has confirmed it was the victim of a data breach in May that was conducted by the Yanluowang ransomware group.
- Why: Yanluowang reportedly stole around 3,100 files from Cisco and attempted to extort the company by threatening to leak the files on the dark web.
- Where: Cisco is used by consumers nationwide.
Cisco has confirmed it was the victim of a data breach in May that saw the ransomware group Yanluowang attempt to extort them by threatening to leak stolen files.
Yanluowang was able to breach Cisco’s corporate network, the company says; however, it notes the hackers were only able to steal and harvest data from a box folder linked to a single compromised employee’s account, BleepingComputer reports.
“Cisco experienced a security incident on our corporate network in late May 2022, and we immediately took action to contain and eradicate the bad actors,” the company tells BleepingComputer.
Yanluowang claims to have stolen around 3,100 files — consisting of 2.75 GB of data — in the Cisco data breach with many of the files containing data dumps, engineering drawings and non-disclosure agreements, Cisco reveals.
The company says Yanluowang used credentials stolen from the employee by infiltrating their personal Google account, which had their credentials linked to their browser, to gain access to its network.
After gaining access to its corporate network, Cisco says Yanluowang spread to its domain controllers and Citrix servers, BleepingComputer reports.
Cisco able to get hackers out of network after data breach
While Cisco was ultimately able to get the hackers out of its network, Yanluowang made repeated attempts to try to regain access in the ensuing weeks, Bleeping Computer reports.
“The threat actor was successfully removed from the environment and displayed persistence, repeatedly attempting to regain access in the weeks following the attack; however, these attempts were unsuccessful,” Cisco tells BleepingComputer.
In related data breach news, global digital identity company ForgeRock revealed in its 2022 ForgeRock Consumer Identity Breach Report in July that it costs an average of $9.5 million to recover from a data breach in the United States.
Are you concerned about the Cisco data breach? Let us know in the comments.
Don’t Miss Out!
Check out our list of Class Action Lawsuits and Class Action Settlements you may qualify to join!
Read About More Class Action Lawsuits & Class Action Settlements:
11 thoughts onCisco data breach results in leaked files on dark web
Add me
I was informed by credit sesame that my info was found being bought and sold on the dark web, after 3 hospital breaches my medical records were stolen out of a medical file courier, then that dark web nonsense . Add me please
Add me
this is unbelievable, I have a Costco’s card in my wallet right now add me please….
the last place I want my information to wind up it’s on the dark web
Costco has nothing to do with this, my dear..
the company that has been affected is. > C I S C O <
Add ne
Add me, I used Cisco for online church services
Add me
Yes!!
Add me
Add me