Cisco says DevHub site leak won’t enable future breaches

Cisco says that non-public files recently downloaded by a threat actor from a misconfigured public-facing DevHub portal don’t contain information that could be exploited in future breaches of the company’s systems.

While analyzing the exposed documents, the company found that their contents include data that Cisco publishes for customers and other DevHub users. However, files that shouldn’t have been made public were also available, some belonging to CX Professional Services customers.

“So far, in our research, we’ve determined that a limited set of CX Professional Services customers had files included and we notified them directly,” Cisco said.

“Our teams have indexed and continue assessing the content of those files, and we continue to make steady progress. We have not identified any information in the content that an actor could have used to access any of our production or enterprise environments.”

Cisco has since corrected the configuration, restored public access to the DevHub site, and says that web search engines did not index the exposed documents.

This update comes after Cisco confirmed last month that it took its public DevHub site offline (a resource center for customers where it publishes software code, templates, and scripts) after a threat actor leaked what the company described at the time as “non-public” data.

The company added that it found no evidence that any financial data or personal information had been exposed or stolen from the public DevHub portal before it was taken offline.

IntelBroker (the threat actor behind the leak) told BeelpingComputer they also allegedly gained access to a Cisco JFrog developer environment through an exposed API token.

Screenshots and files the threat actor shared with BeelpingComputer showed they gained access to source code, configuration files with database credentials, technical documentation, and SQL files.

While Cisco says its systems haven’t been breached, information shared by the threat actor indicates that they also breached a third-party development environment, allowing them to steal data.

BleepingComputer contacted Cisco with further questions about IntelBroker’s claims, but the company has not replied.

Sergiu Gatlan

Kommentar verfassen Kommentieren abbrechen

London, GB

6:16 pm, Juni 28, 2025

29°C

L: 28° | H: 30°

Fühlt sich an wie 30°C° wenige Wolken

Luftfeuchtigkeit: 52 %

Druck: 1023 mb

Wind: 11 mph WSW

Windböe: 0 mph

UV-Index: 0

Niederschlag: 0 mm

Wolken: 20%

Regen Chance: 0%

Sichtbarkeit: 10 km

Sonnenaufgang: 4:45 am

Sonnenuntergang: 9:21 pm

TäglichStündlich

Tägliche VorhersageStündliche Vorhersage

Today 10:00 pm

28° | 30°°C 0 mm 0% 11 mph 57 % 1024 mb 0 mm/h

Tomorrow 10:00 pm

18° | 31°°C 0 mm 0% 7 mph 83 % 1025 mb 0 mm/h

Mo. Juni 30 10:00 pm

21° | 36°°C 1 mm 100% 8 mph 67 % 1021 mb 0 mm/h

Di. Juli 01 10:00 pm

21° | 32°°C 0.74 mm 74% 12 mph 73 % 1019 mb 0 mm/h

Mi. Juli 02 10:00 pm

17° | 25°°C 1 mm 100% 18 mph 85 % 1021 mb 0 mm/h

Today 7:00 pm

25° | 29°°C 0 mm 0% 11 mph 52 % 1023 mb 0 mm/h

Today 10:00 pm

22° | 27°°C 0 mm 0% 8 mph 57 % 1024 mb 0 mm/h

Tomorrow 1:00 am

20° | 23°°C 0 mm 0% 7 mph 68 % 1024 mb 0 mm/h

Tomorrow 4:00 am

18° | 18°°C 0 mm 0% 5 mph 83 % 1025 mb 0 mm/h

Tomorrow 7:00 am

19° | 19°°C 0 mm 0% 5 mph 75 % 1025 mb 0 mm/h

Tomorrow 10:00 am

24° | 24°°C 0 mm 0% 5 mph 53 % 1025 mb 0 mm/h

Tomorrow 1:00 pm

29° | 29°°C 0 mm 0% 6 mph 40 % 1024 mb 0 mm/h

Tomorrow 4:00 pm

31° | 31°°C 0 mm 0% 5 mph 33 % 1023 mb 0 mm/h

Name	Preis	24H (%)
Bitcoin(BTC)	€91,581.63	0.04%
Ethereum(ETH)	€2,078.28	0.47%
Fesseln(USDT)	€0.85	0.00%
XRP(XRP)	€1.87	4.26%
Solana(SOL)	€127.49	4.25%
USDC(USDC)	€0.85	-0.01%
Dogecoin(DOGE)	€0.139008	1.23%
Shiba Inu(SHIB)	€0.000009	1.23%
Pepe(PEPE)	€0.000008	1.49%

Cisco says DevHub site leak won’t enable future breaches

Teilen:

Kommentar verfassen Kommentieren abbrechen

Verbindung zum Dienstprogramm

Nützlicher Link

Newsletter

Folgen Sie uns