Cisco says DevHub site leak won’t enable future breaches

Cisco says that non-public files recently downloaded by a threat actor from a misconfigured public-facing DevHub portal don’t contain information that could be exploited in future breaches of the company’s systems.

While analyzing the exposed documents, the company found that their contents include data that Cisco publishes for customers and other DevHub users. However, files that shouldn’t have been made public were also available, some belonging to CX Professional Services customers.

“So far, in our research, we’ve determined that a limited set of CX Professional Services customers had files included and we notified them directly,” Cisco said.

“Our teams have indexed and continue assessing the content of those files, and we continue to make steady progress. We have not identified any information in the content that an actor could have used to access any of our production or enterprise environments.”

Cisco has since corrected the configuration, restored public access to the DevHub site, and says that web search engines did not index the exposed documents.

This update comes after Cisco confirmed last month that it took its public DevHub site offline (a resource center for customers where it publishes software code, templates, and scripts) after a threat actor leaked what the company described at the time as “non-public” data.

The company added that it found no evidence that any financial data or personal information had been exposed or stolen from the public DevHub portal before it was taken offline.

IntelBroker (the threat actor behind the leak) told BeelpingComputer they also allegedly gained access to a Cisco JFrog developer environment through an exposed API token.

Screenshots and files the threat actor shared with BeelpingComputer showed they gained access to source code, configuration files with database credentials, technical documentation, and SQL files.

While Cisco says its systems haven’t been breached, information shared by the threat actor indicates that they also breached a third-party development environment, allowing them to steal data.

BleepingComputer contacted Cisco with further questions about IntelBroker’s claims, but the company has not replied.

Sergiu Gatlan

Leave a Comment Cancel Reply

London, GB

11:48 pm, Jun 28, 2025

22°C

L: 21° | H: 23°

Feels like 23°C° clear sky

Humidity: 76 %

Pressure: 1025 mb

Wind: 8 mph SW

Wind Gust: 0 mph

UV Index: 0

Precipitation: 0 mm

Clouds: 0%

Rain Chance: 0%

Visibility: 10 km

Sunrise: 4:45 am

Sunset: 9:21 pm

DailyHourly

Daily ForecastHourly Forecast

Tomorrow 10:00 pm

21° | 23°°C 0 mm 0% 7 mph 80 % 1026 mb 0 mm/h

Mon Jun 30 10:00 pm

20° | 34°°C 1 mm 100% 6 mph 66 % 1022 mb 0 mm/h

Tue Jul 01 10:00 pm

20° | 32°°C 0.77 mm 77% 11 mph 68 % 1019 mb 0 mm/h

Wed Jul 02 10:00 pm

16° | 24°°C 1 mm 100% 12 mph 89 % 1019 mb 0 mm/h

Thu Jul 03 10:00 pm

15° | 22°°C 0 mm 0% 15 mph 81 % 1022 mb 0 mm/h

Tomorrow 1:00 am

20° | 22°°C 0 mm 0% 7 mph 76 % 1025 mb 0 mm/h

Tomorrow 4:00 am

18° | 21°°C 0 mm 0% 5 mph 79 % 1025 mb 0 mm/h

Tomorrow 7:00 am

19° | 20°°C 0 mm 0% 5 mph 80 % 1026 mb 0 mm/h

Tomorrow 10:00 am

23° | 23°°C 0 mm 0% 4 mph 58 % 1026 mb 0 mm/h

Tomorrow 1:00 pm

28° | 28°°C 0 mm 0% 5 mph 43 % 1025 mb 0 mm/h

Tomorrow 4:00 pm

30° | 30°°C 0 mm 0% 3 mph 35 % 1023 mb 0 mm/h

Tomorrow 7:00 pm

30° | 30°°C 0 mm 0% 1 mph 34 % 1021 mb 0 mm/h

Tomorrow 10:00 pm

24° | 24°°C 0 mm 0% 6 mph 56 % 1022 mb 0 mm/h

Name	Price	24H (%)
Bitcoin(BTC)	€91,591.87	0.14%
Ethereum(ETH)	€2,080.69	0.61%
Tether(USDT)	€0.85	-0.01%
XRP(XRP)	€1.87	2.13%
Solana(SOL)	€128.82	5.66%
USDC(USDC)	€0.85	0.00%
Dogecoin(DOGE)	€0.140238	1.84%
Shiba Inu(SHIB)	€0.000010	2.45%
Pepe(PEPE)	€0.000009	4.19%

Cisco says DevHub site leak won’t enable future breaches

Share:

Leave a Comment Cancel Reply

Utility link

Useful link

Newsletter

Follow Us