Teenage Hacker Linked to Lapsus$ Gang Attacks Cisco Network with Compromised Employee Credential

    Cisco Systems Inc. disclosed it was a cyberattack victim after a hacker made repeated attempts to gain access to its corporate network.

    The Silicon Valley-based company said it knew about the security compromise that happened on May 24. On Wednesday, Cisco said the hacker leaked on the dark web a list of files he is stolen.




    An investigation revealed that the hacker cracked the personal Google account of an employee of Cisco and broke into the company’s network. In a blog post published by Cisco Wednesday, the company said that hackers took advantage of the saved passwords synchronized across the web by Google.

    The hacker pretended to be a trusted organization and persuaded the targeted employee to accept the multifactor authentication notification sent to his device. It allowed the attacker to gain access to the network of Cisco using the employee compromised credential.

    According to a blog post, Cisco did not find evidence suggesting the attacker gained access to critical systems related to code signing and product development. The successful data breach during the attack involved a black folder linked to the compromised account of the targeted employee. The data breached by the attacker was not sensitive, according to the company.

    Rouge Ransomware Groups

    Investigations revealed that the hacker who conducted the attack was previously an initial access broker. The adversary was identified with notorious cybercriminals gangs such as Lapus$, UNC2447, and Yanluowang. The initial brokers gain access to corporate networks, steal data by injecting ransomware into the system and then sell them to other hackers on the dark web.

    Cybersecurity firm Mandiant concluded last year that many ransomware attacks on organizations in North America and Europe were conducted by UNC2447, a financially motivated aggressive group.

    According to Symantec, Yanluowang is a ransomware group named after a Chinese deity and, since August 2021, has attacked American Corporations.

    The Lapsus$ group has been accused of conducting high-profile attacks on technology companies, including Nvidia Corp., Microsoft Corp., and Okta Inc.

    According to a report from Bloomberg News, the suspected mastermind of the Cisco attack was a 16-year British teenager living in his mother’s house. The hacker was trying to encrypt the files but could not do so before being detected and kicked out, according to evidence found by the company. Cisco also found several attempts to regain access after the attacker was evicted.

    Bleeping Computer had previously reported the hack.



    RELATED ARTICLES

    AI Transformation

    The AI Transformation: A New Era for Managing Real Estate Leases

    Welcoming AI into real estate lease administration isn't just an upgrade; it's a groundbreaking shift...
    Semantic Search

    Why Businesses Are Utilizing Semantic Search for Better Results

    The digital landscape is constantly evolving, and the way users interact with information is no...
    freebrightsoft.com

    freebrightsoft.com: A Go-To Source for Free WordPress Themes

    Are you trying to find a website where you can get free themes, templates, components,...
    thesparkshop.inproductbatman-style-wireless-bt-earbuds

    thesparkshop.in:product/batman-style-wireless-bt-earbuds – Sound Superhero

    In the ever-evolving world of technology, devices reflect our interests and personalities more than just...
    SMS API Vendor

    Selecting an SMS API Vendor and Mastering Conversational SMS

    Integrating SMS (Short Message Service) and MMS (Multimedia Messaging Service) into business communication strategies is...
    Bolly4U

    Bolly4U: Your Platform for Unlimited Movies

    Bolly4U Movie is a one-stop platform offering a collection of movies, television shows, and web...
    MBA Programme

    Dual Degree MBA Programme: A Unique Educational Opportunity

    In today's world, professional success requires more than traditional management skills. It calls for a...
    women ipl

    Women IPL Sensation Shreyanka Patil: From Fan to Champion

    In a cricketing universe usually ruled by dudes, Shreyanka Patil, the rookie wonder for Royal...
    Monetize Magnet

    Monetize Magnet Review – The Best Crypto and Forex CPA Network

    In today's world, cryptocurrency has reached new heights, expanding continuously and providing online earning opportunities...
    celsius drink

    Celsius Drink – What Is It and How Safe Is It?

    These days, you must come across your social media feeds with an advertisement for a...
    low porosity hair

    Low Porosity Hair Problem? Slay Locks with Moisture Miracle

    Have you ever experienced your hair being stubbornly resistant to moisture? That's low porosity hair...