Lawrence Abrams reports:
Cisco confirmed today that it took its public DevHub portal offline after a threat actor leaked “non-public” data, but it continues to state that there is no evidence that its systems were breached.
“We have determined that the data in question is on a public-facing DevHub environment—a Cisco resource center that enables us to support our community by making available software code, scripts, etc. for customers to use as needed,” reads an updated statement from Cisco.
“At this stage in our investigation, we have determined that a small number of files that were not authorized for public download may have been published.”
Abrams’ October 18 reporting cites Cisco’s October 15 update. A check of Cisco’s site reveals that there has been no further update since the October 15 statement.
Read more at Bleeping Computer.