Who is believed to be behind the Cisco cyberattack?

Security researchers have linked this attack to the ShinyHunters extortion group, which has been targeting companies using similar voice phishing techniques. This group has also targeted companies including Qantas, Allianz Life, LVMH, Adidas, and Chanel using similar methods.

What types of data were exposed in the Cisco breach?

The exposed data includes names, organization names, physical addresses, Cisco-assigned user IDs, email addresses, phone numbers, and account metadata such as creation dates of users registered on Cisco.com.

How many people were affected by the Cisco data breach?

Cisco has not disclosed the number of affected individuals in this data breach. The company only confirmed that users registered on Cisco.com were impacted but did not provide specific figures on the scope of the incident.

Is this part of a larger wave of attacks?

Yes, this attack is part of a broader wave of Salesforce data theft campaigns attributed to the ShinyHunters extortion group. The group has been targeting multiple major companies including Qantas, Allianz Life, LVMH, Adidas, and Chanel using similar voice phishing techniques.

When did the Cisco data breach occur?

The voice phishing attack that led to the Cisco data breach occurred on July 24, 2025, when a malicious actor successfully targeted one of Cisco's representatives through a phone-based social engineering scheme.

Incident

Cisco reports data breach after voice Phishing attack compromises third-party CRM system

Q: What happened in the Cisco data breach?

Cisco Systems reported a data breach affecting users registered on Cisco.com after a voice phishing attack successfully targeted one of the company's representatives on July 24, 2025. The attack tricked a Cisco employee into granting access to the third-party CRM platform.

Q: What should affected Cisco customers do?

Cisco has apologized for any inconvenience or concern the incident may have caused and encouraged customers and partners with additional questions to contact their account teams for more information about the breach.

published: Aug. 5, 2025

Learn More

Cisco Systems is reporting a data breach affecting users registered on Cisco.com after a voice phishing attack successfully targeted one of the company's representatives on July 24, 2025.

The incident was caused by a sophisticated voice phishing (vishing) attack, where a malicious actor targeted a Cisco representative through a phone-based social engineering scheme, successfully tricking the employee into granting access to the third-party CRM platform. Security researchers have linked this attack to a broader wave of Salesforce data theft campaigns attributed to the ShinyHunters extortion group, which has been targeting companies including Qantas, Allianz Life, LVMH, Adidas, Chanel, and others using similar voice phishing techniques.

Exposed data includes:

Names
Organization names
Physical addresses
Cisco-assigned user IDs
Email addresses
Phone numbers
Account metadata (such as creation dates)

The number of affected individuals has not been disclosed.

Following standard data breach protocols, Cisco engaged with relevant data protection authorities and notified affected users as required by applicable laws. The company is implementing additional security measures to prevent future incidents, including re-educating personnel on how to identify and protect against potential vishing attacks.

Cisco apologized for any inconvenience or concern the incident may have caused and encouraged customers and partners with additional questions to contact their account teams.

Cisco reports data breach after voice Phishing attack compromises third-party CRM system

Read More
Summit Pathology reports data breach exposing 1.8M patients
MathWorks, developer of MATLAB hit by ransomware attack …
Shopping platform PandaBuy hit by data breach, exposes …
AnyDesk reports production systems breach, credentials for sale
Global IT Distributor Ingram Micro suffers outage disrupting …