Cisco says DevHub site leak won’t enable future breaches

Cisco says that non-public files recently downloaded by a threat actor from a misconfigured public-facing DevHub portal don’t contain information that could be exploited in future breaches of the company’s systems.

While analyzing the exposed documents, the company found that their contents include data that Cisco publishes for customers and other DevHub users. However, files that shouldn’t have been made public were also available, some belonging to CX Professional Services customers.

“So far, in our research, we’ve determined that a limited set of CX Professional Services customers had files included and we notified them directly,” Cisco said.

“Our teams have indexed and continue assessing the content of those files, and we continue to make steady progress. We have not identified any information in the content that an actor could have used to access any of our production or enterprise environments.”

Cisco has since corrected the configuration, restored public access to the DevHub site, and says that web search engines did not index the exposed documents.

This update comes after Cisco confirmed last month that it took its public DevHub site offline (a resource center for customers where it publishes software code, templates, and scripts) after a threat actor leaked what the company described at the time as “non-public” data.

The company added that it found no evidence that any financial data or personal information had been exposed or stolen from the public DevHub portal before it was taken offline.

IntelBroker (the threat actor behind the leak) told BeelpingComputer they also allegedly gained access to a Cisco JFrog developer environment through an exposed API token.

Screenshots and files the threat actor shared with BeelpingComputer showed they gained access to source code, configuration files with database credentials, technical documentation, and SQL files.

While Cisco says its systems haven’t been breached, information shared by the threat actor indicates that they also breached a third-party development environment, allowing them to steal data.

BleepingComputer contacted Cisco with further questions about IntelBroker’s claims, but the company has not replied.

Sergiu Gatlan

Kommentar verfassen Kommentieren abbrechen

London, GB

4:58 am, Feb. 2, 2025

0°C

L: -1° | H: 1°

Fühlt sich an wie -3°C° aufgelockerte Bewölkung

Luftfeuchtigkeit: 95 %

Druck: 1022 mb

Wind: 6 mph E

Windböe: 0 mph

UV-Index: 0

Niederschlag: 0 mm

Wolken: 44%

Regen Chance: 0%

Sichtbarkeit: 7 km

Sonnenaufgang: 7:37 am

Sonnenuntergang: 4:51 pm

TäglichStündlich

Tägliche VorhersageStündliche Vorhersage

Today 9:00 pm

-1° | 1°°C 0 mm 0% 7 mph 95 % 1025 mb 0 mm/h

Tomorrow 9:00 pm

3° | 10°°C 0 mm 0% 7 mph 92 % 1025 mb 0 mm/h

Di. Feb. 04 9:00 pm

6° | 10°°C 1 mm 100% 12 mph 92 % 1026 mb 0 mm/h

Mi. Feb. 05 9:00 pm

4° | 7°°C 0 mm 0% 9 mph 86 % 1045 mb 0 mm/h

Do. Feb. 06 9:00 pm

2° | 7°°C 0 mm 0% 9 mph 87 % 1045 mb 0 mm/h

Today 6:00 am

0° | 2°°C 0 mm 0% 5 mph 95 % 1022 mb 0 mm/h

Today 9:00 am

1° | 3°°C 0 mm 0% 5 mph 89 % 1022 mb 0 mm/h

Today 12:00 pm

5° | 7°°C 0 mm 0% 7 mph 73 % 1023 mb 0 mm/h

Today 3:00 pm

8° | 8°°C 0 mm 0% 7 mph 56 % 1022 mb 0 mm/h

Today 6:00 pm

5° | 5°°C 0 mm 0% 4 mph 72 % 1024 mb 0 mm/h

Today 9:00 pm

4° | 4°°C 0 mm 0% 4 mph 78 % 1025 mb 0 mm/h

Tomorrow 12:00 am

3° | 3°°C 0 mm 0% 4 mph 79 % 1025 mb 0 mm/h

Tomorrow 3:00 am

3° | 3°°C 0 mm 0% 4 mph 83 % 1025 mb 0 mm/h

Name	Preis	24H (%)
Bitcoin(BTC)	€96,155.60	-2.59%
Ethereum(ETH)	€2,989.38	-5.98%
XRP(XRP)	€2.75	-6.30%
Fesseln(USDT)	€0.96	-0.02%
Solana(SOL)	€202.20	-9.59%
USDC(USDC)	€0.96	0.01%
Dogecoin(DOGE)	€0.289802	-8.73%
Shiba Inu(SHIB)	€0.000016	-8.89%
Pepe(PEPE)	€0.000012	-12.72%

Cisco says DevHub site leak won’t enable future breaches

Teilen:

Kommentar verfassen Kommentieren abbrechen

Verbindung zum Dienstprogramm

Nützlicher Link

Newsletter

Folgen Sie uns