Cisco has confirmed the data published by the Yanluowang ransomware gang on its leak site was stolen from the firm during the May cyberattack. The firm’s network was breached after hackers compromised an employee’s VPN account.
The stolen records comprised non-sensitive files from the employee’s Box folder. Hackers claimed 55GB worth of files had been compromised, including classified documents, schematics, and source code. However, the claims remain unverifiable.
The company said, “On September 11, 2022, the bad actors who previously published a list of file names from this security incident to the dark web, posted the actual contents of the same files to the same location on the dark web. The content of these files match what we already identified and disclosed.”
“Our previous analysis of this incident remains unchanged-we continue to see no impact to our business, including Cisco products or services, sensitive customer data or sensitive employee information, intellectual property, or supply chain operations,” it added.
However, the attack was curbed before the ransomware could start encrypting systems. The tech giant assures the leak has no impact on its business. Cisco disqualified the possibility of source code being exfiltrated.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
