Skip to content
Sign In Subscribe
Cybersecurity | english only |NewsEnglishCybersecurity

Cisco hacked by Yanluowang ransomware gang

 and  Katalin Béres
2 min read

Table of Contents

On May 24, 2022, Cisco became aware of a potential compromise. Since that point, Cisco Security Incident Response (CSIRT) and Cisco Talos have been working to remediate.
Cisco has updated its security products with intelligence gained from observing the bad actor’s techniques, shared Indicators of Compromise (IOCs) with other parties, reached out to law enforcement and other partners, and is sharing further technical details via a Talos blog to help cyber defenders learn from their observations.
Cisco Talos shares insights related to recent cyber attack on Cisco
A blog from the world class Intelligence Group, Talos, Cisco’s Intelligence Group
Comprehensive Threat Intelligence: Cisco Talos shares insights related to recent cyber attack on CiscoNick Biasini

#CyberAttack #DataBreach #Ransomware #CTI #Analysis #IoCs

The Yanluowang ransomware group shared a TXT file with all the stolen files name. Group claims size of stolen files are total 82 GB.

Some details of content from the shared TXT:

Related

Hacked: Russian GRU officer wanted by the FBI, leader of the hacker group APT 28
Cybersecurity | english only |

Hacked: Russian GRU officer wanted by the FBI, leader of the hacker group APT 28

Ukrainian hacktivist team Cyber Resistance hacked the email of Lieutenant Colonel Sergey Alexandrovich Morgachev, an officer of the Russian Main Intelligence Directorate of the General Staff of the Russian Army (GRU), leader of the Russian hacker group APT 28, consisting of officers of the 85th Main Special Service Center of

 and  Katalin Béres
Members Public
Supply Chain Attack Against Customers Of Business Phone Provider 3CX Using Trojanized 3CX Desktop App
Cybersecurity | english only |

Supply Chain Attack Against Customers Of Business Phone Provider 3CX Using Trojanized 3CX Desktop App

Hackers may have compromised the networks of thousands of businesses due to a supply-chain attack on the enterprise phone company 3CX, which confirmed on Thursday its desktop app had been bundled with malware. 3CX provides office phone systems to more than 12 million daily users at over 600,000 companies,

 and  Katalin Béres
Members Public
Analysis of the "#VulkanFiles" Leak
Cybersecurity | english only |

Analysis of the "#VulkanFiles" Leak

A whistleblower has provided several media organizations with access to leaked documents from a Russian IT firm named NTC Vulkan (Russian: НТЦ Вулкан) that allegedly show how the firm supports Russia's military and intelligence agencies with cyber warfare tools. Journalists from Der Spiegel and Munich-based investigative group Paper

 and  Katalin Béres
Members Public

Latest

Egy Fortigate sérülékenység világszintű hatásai és tanulságai: Belsen Leak
Cybersecurity

Egy Fortigate sérülékenység világszintű hatásai és tanulságai: Belsen Leak

Több mint 15 ezer IP címet és szenzitív adatot, melyek Fortigate eszközökhöz tartozn(/t)ak, szivárogtatott ki a Belsen Group. Magyarország ugyan csak egyetlen eszközzel érintett (ez jó hír), az incidens hatásai és tanulságai azonban hazai és globális kiberbiztonsági szempontból is kiemelkedőek.

 and  Katalin Béres  and  Ferenc Fresz
Members Public