Language Selection

English French German Italian Portuguese Spanish

Cisco.com website breached - customers warned

Filed under
Security

Cisco is advising customers to update passwords for the company's web portal following a security breach reported this morning.

The company has admitted that the compromise could expose customer passwords but gave no further details of the cause of the problem.

In a press statement, Cisco said: "It has been brought to our attention that there is an issue in a Cisco.com search tool that could expose passwords for registered users.

"As a result, to protect our registered Cisco.com users, we're taking the proactive step of resetting Cisco.com passwords. Needless to say we're investigating the incident which does not appear to be due to a weakness in our security products and technologies or with our network infrastructure."

The company also stressed on its website that the incident appears unrelated to flaws in Cisco products.

Security experts, however, are unsure as hackers around the world have been racing to find a vulnerability in Cisco equipment since it was described by security researcher Michael Lynn at the Black Hat conference last week. Cisco and Lynn's former employer, Internet Security Systems, have taken legal action against the researcher following the presentation.

One industry source said: "I think this has the possibility of having a significant impact on corporations and the intellectual property of Cisco."

But others disagree. Michael Maddison, director of enterprise risk services for Deloitte, said: "I think it's more likely to be a vulnerability in web applications than Cisco equipment. That's my opinion - we see vulnerabilities in web pages all the time."

Source.

More in Tux Machines

Samsung's first open-source conference kicks off, with Tizen on its mind

The inaugural Samsung Open-Source Conference opens Tuesday morning in Seoul, with keynotes from well-known figures in the open source world and a hackathon focused on Tizen, the company’s in-house mobile operating system. The event kicks off with a speech from Jono Bacon, the former community manager for Ubuntu, who recently moved to the XPrize Foundation, and also includes talks from Linux kernel developer Tejun Heo and Carsten Heitzler, the principal creator of the Enlightenment desktop environment for Linux. Read more Also: Samsung Electronics to host first open-source conference

Flockport Rivals Docker with Open Source Container Virtualization

Is there more to container-based open source virtualization than Docker? A startup named Flockport thinks so, and has launched a website for sharing and deploying virtual apps using Linux Containers (LXC), an alternative to Docker. Read more

OpenDaylight executive director spells out where this open source SDN efforts stand

So if I compare it to Linux. Linux is in my computer, in my car, it’s in a million things outside of the server room. In the same way I think a large percentage of OpenDaylight will be used and leveraged that way. You will have a few people who grab the code, compile it themselves and deploy it in their environment, but mostly for a proof of concept (POC). If an end user hears about SDN and thinks it’s great, they might find themselves needing to POC 15 different solutions. Do I need an overlay? Well, you’ve got to look at three or four overlays out there because they all do things differently. And if you want to figure out how to use OpenFlow, well there are different flavors of OpenFlow, so you’re going to pull a couple of different ones. Read more

'Windows 9' LEAK: Microsoft's playing catchup with Linux

New videos of a "Windows 9" variant have emerged, and to this hack's eyes they look to have brought Windows up to speed with tricks that desktop Linux has been turning for at least half a decade. Read more Ed: Microsoft uses fake 'leaks' and vapourware again. "In the face of strong competition, Evangelism's focus may shift immediately to the next version of the same technology, however. Indeed, Phase 1 (Evangelism Starts) for version x+1 may start as soon as this Final Release of version X."

--Microsoft, internal document [PDF]