Cisco has confirmed facts Yanluowang ransomware gang posted on its leak site was indeed stolen from the organization through the May possibly cyberattack.
The firm’s network was breached after hackers compromised an employee’s VPN account. Even so, the tech huge affirms the leak has no effects on its company, as at first assessed.
According to the company, the stolen data comprised non-sensitive data files from the employee’s Box folder. Nevertheless, the attack was contained in advance of Yanluowang ransomware could start out encrypting techniques.
“On September 11, 2022, the lousy actors who previously revealed a listing of file names from this security incident to the dark web, posted the actual contents of the same data files to the similar site on the dark web. The content of these data files match what we now discovered and disclosed,” defined Cisco.
“Our preceding analysis of this incident remains unchanged-we go on to see no impression to our enterprise, together with Cisco products and solutions or services, delicate purchaser knowledge or delicate staff facts, intellectual assets, or provide chain functions.”
In stark contrast, hackers responsible for the attack claimed 55GB value of data files experienced been compromised, together with classified files, schematics, and supply code.
As matters stand, the claims stay unverifiable. Cisco, on the other hand, disqualified the likelihood of resource code getting exfiltrated.
Some components of this post are sourced from: