Cisco.com

Search documents
思科确认数据泄露:黑客利用AI语音钓鱼攻破防线,用户信息被盗
Feng Huang Wang· 2025-08-05 23:17
Group 1 - Cisco confirmed a serious data breach incident involving user profile information on Cisco.com, discovered on July 24 [1] - Attackers used a sophisticated vishing attack to gain access to a third-party CRM system, compromising basic user account details such as names, organization names, email addresses, phone numbers, and assigned user IDs, but not passwords or sensitive internal data [1] - The incident highlights a dangerous trend in cybersecurity, with AI-enhanced vishing attacks increasing by 442% over the past year, and projections indicating that by 2025, 91% of cyber intrusions will start with phishing attacks [1] Group 2 - Security experts suggest that the attack on Cisco is likely part of a series of attacks targeting Salesforce platform customers, with similar incidents reported by companies like Qantas, Allianz, Louis Vuitton, and Adidas [2] - Google’s threat intelligence team attributed these attacks to a hacker group known as UNC6040, which typically impersonates IT support personnel and is linked to the notorious ShinyHunters ransomware group [2] - In response to the breach, Cisco has cut off the attackers' access, initiated a comprehensive investigation, and is communicating with data protection agencies while notifying affected users [2]