Security News > 2022 > September > Cisco confirms Yanluowang ransomware leaked stolen company data

Cisco confirms Yanluowang ransomware leaked stolen company data
2022-09-12 08:21

Our previous analysis of this incident remains unchanged-we continue to see no impact to our business, including Cisco products or services, sensitive customer data or sensitive employee information, intellectual property, or supply chain operations.

In a report in August, Cisco announced that its network had been breached by the Yanluowang ransomware after the hackers compromised an employee's VPN account.

According to the company, the stolen data included non-sensitive files from the employee's Box folder and the attack was contained before Yanluowang ransomware could start encrypting systems.

"We have no evidence to suggest the actor accessed Cisco product source code or any substantial access beyond what we have already publicly disclosed," - Cisco.

Late last month, the research team at cybsersecurity company eSentire published a report with evidence that linked Yanluowang, "Evil Corp", and FiveHands ransomware.

The hacker told BleepingComputer that they acted alone in breaching Cisco and were not affiliated with any of those factions.


News URL

https://www.bleepingcomputer.com/news/security/cisco-confirms-yanluowang-ransomware-leaked-stolen-company-data/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Cisco 2046 21 1773 1669 288 3751