Cisco announced that cybercriminals obtained basic profile information of users from Cisco.com through a voice phishing attack aimed at a company employee. On July 24th, Cisco became aware of the incident, which involved the attacker misleading an employee to access a third-party cloud-based CRM system. The breach resulted in the theft of personal information, including names, organization details, addresses, user IDs, email addresses, phone numbers, and account metadata like creation dates. There are indications that this may be linked to a Salesforce-related attack attributed to ShinyHunters.
Cisco disclosed that cybercriminals stole basic profile information from users registered on Cisco.com after a vishing attack targeted a company representative. An employee was tricked, granting access to a third-party CRM system. The attacker accessed personal and account information of Cisco.com users, including names, organization names, addresses, user IDs, email addresses, phone numbers, and account metadata like creation dates.
The attack was discovered on July 24th, which prompted Cisco’s investigation into the incident and how the data breach occurred, revealing vulnerability in its user account protection.
Collection
[
|
...
]