Cisco said that considered one of its representatives fell victim to a voice phishing attack that allowed threat actors to download profile information belonging to users of a third-party customer relationship management system.
“Our investigation has determined that the exported data primarily consisted of basic account profile information of people who registered for a user account on Cisco.com,” the corporate disclosed. Information included names, organization names, addresses, Cisco assigned user IDs, email addresses, phone numbers, and account-related metadata equivalent to creation date.
Et tu, Cisco?
Cisco said that the breach didn’t expose customers’ confidential or proprietary information, password data, or other sensitive information. The corporate went on to say that investigators found no evidence that other CRM instances were compromised or that any of its services or products were affected.
Phishing attacks, particularly those counting on voice calls, have emerged as a key method for ransomware groups and other kinds of threat actors to breach defenses of a number of the world’s most fortified organizations. In some cases, the threat actors behind these attacks used multiple types of communication, including email, voice calls, push notifications, and text messages. They often devote considerable research to the attacks to make them consistent with legitimate authentication methods used internally by the goal. Among the corporations successfully compromised in such attacks include Microsoft, Okta, Nvidia, Globant, Twilio, and Twitter.