Cisco discloses data breach impacting Ciscocom user accounts

pSonicWall Firewall configs stolen for all cloud backup customersppNew FileFix attack uses cache smuggling to evade security softwareppHackers claim Discord breach exposed data of 55 million usersppGoogles new AI bug bounty program pays up to 30000 for flawsppHarvard investigating breach linked to Oracle zeroday exploitppThe 380 refurbished Surface Laptop 3 with i7 performance and 16GB RAMppFake Inflation Refund texts target New Yorkers in new scamppGet your first year of Sams Club membership for 15 MSRP 50ppHow to access the Dark Web using the Tor BrowserppHow to enable Kernelmode Hardwareenforced Stack Protection in Windows 11ppHow to use the Windows Registry EditorppHow to backup and restore the Windows RegistryppHow to start Windows in Safe ModeppHow to remove a Trojan Virus Worm or other MalwareppHow to show hidden files in Windows 7ppHow to see hidden files in WindowsppRemove the Theonlinesearchcom Search RedirectppRemove the Smartwebfindercom Search RedirectppHow to remove the PBlock adware browser extensionppRemove the Toksearchesxyz Search RedirectppRemove Security Tool and SecurityTool Uninstall GuideppHow to Remove WinFixer Virtumonde Msevents TrojanvundoppHow to remove Antivirus 2009 Uninstall InstructionsppHow to remove Google Redirects or the TDSS TDL3 or Alureon rootkit using TDSSKillerppLocky Ransomware Information Help Guide and FAQppCryptoLocker Ransomware Information Guide and FAQppCryptorBit and HowDecrypt Information Guide and FAQppCryptoDefense and HowDecrypt Ransomware Information Guide and FAQppQualys BrowserCheckppSTOPDecrypterppAuroraDecrypterppFilesLockerDecrypterppAdwCleanerppComboFixppRKillppJunkware Removal ToolppeLearningppIT Certification CoursesppGear GadgetsppSecurityppBest VPNsppHow to change IP addressppAccess the dark web safelyppBest VPN for YouTubeppppCisco has disclosed that cybercriminals stole the basic profile information of users registered on Ciscocom following a voice phishing vishing attack that targeted a company representativeppAfter becoming aware of the incident on July 24th the networking equipment giant discovered that the attacker tricked an employee and gained access to a thirdparty cloudbased Customer Relationship Management CRM system used by CiscoppThis allowed the threat actor to steal the personal and user information of individuals with Ciscocom user accounts including names organization names addresses Ciscoassigned user IDs email addresses phone numbers and account metadata such as creation datesppHowever the company said that the attacker didnt obtain organizational customers confidential or proprietary information or any passwords or other types of sensitive information Cisco added that the incident didnt impact its products or services and no other Cisco CRM system instances were affectedppUpon learning of the incident the actors access to that CRM system instance was immediately terminated and Cisco commenced an investigation Cisco has engaged with data protection authorities and notified affected users where required by law the company saidppWe are implementing further security measures to mitigate the risk of similar incidents occurring in the future including reeducating personnel on how to identify and protect against potential vishing attacksppCisco has yet to disclose how many individuals had their personal and user account information stolen in the incident and whether the attackers requested a ransom in exchange for not leaking the stolen data onlineppAlthough not yet confirmed by the company this is likely part of an ongoing wave of Salesforce data theft attacks using vishing and social engineering techniques that have been linked to the ShinyHunters extortion group ppOther highprofile companies have been impacted by Salesforce data breaches in recent weeks including Adidas Qantas Allianz Life LVMH brands Louis Vuitton Dior and Tiffany Co as well as fashion giant ChanelppWhen contacted by BleepingComputer a Cisco spokesperson referred us to the public statement and did not confirm whether the data was stolen from a compromised Salesforce instance nor did they disclose the number of individuals affectedppIn October Cisco also had to take its public DevHub portal offline after a threat actor known as IntelBroker leaked nonpublic data on the BreachForums hacking forum ppOne month later the company confirmed that the threat actor downloaded the files from a misconfigured publicfacing DevHub portal including some belonging to CX Professional Services customersppUpdate August 07 0246 EDT Added Cisco statementppJoin the Breach and Attack Simulation Summit and experience the future of security validation Hear from top experts and see how AIpowered BAS is transforming breach and attack simulationppDont miss the event that will shape the future of your security strategyppHR giant Workday discloses data breach after Salesforce attackppSaaS giant Workiva discloses data breach after Salesforce attackppSalesloft breached to steal OAuth tokens for Salesforce datatheft attacksppFarmers Insurance data breach impacts 11M people after Salesforce attackppMassive Allianz Life data breach impacts 11 million peopleppCisco has engaged with data protection authorities and notified affected users where required by law
Notified users by the methods and means required by law or only notified users in jurisdictions that require notification by law

Just notify anyone impacted because its the right thing to doppNot a member yet Register NowppFBI takes down BreachForums portal used for Salesforce extortionppWindows 11 23H2 Home and Pro reach end of support in 30 daysppApple now offers 2 million for zeroclick RCE vulnerabilitiesppThe role of Artificial Intelligence in todays cybersecurity landscapeppMake the leapget certified with VMUG Advantage Start your career journey todayppRedefine security validation with Picus AIdriven Breach and Attack SimulationppSee how Material secures Gmail Drive with EDRstyle detection and rapid responseppJoin Huntress to discuss all things tradecraft in a monthly meeting of the technical mindsppTerms of Use Privacy Policy Ethics Statement Affiliate DisclosureppCopyright 2003 2025 Bleeping Computer LLC All Rights ReservedppNot a member yet Register NowppRead our posting guidelinese to learn what content is prohibitedp