Hacker used a voice phishing attack to steal Cisco customers’ personal information

A cybercriminal successfully deceived a Cisco representative, gaining access to sensitive information belonging to Cisco.com users. The revelation came on Tuesday when Cisco disclosed that the breach was identified on July 24, resulting from a voice phishing, or 'vishing,' attack. The hackers managed to access and export a limited set of basic profile information from a third-party cloud-based customer relationship management (CRM) system. According to Cisco, the compromised data included vital details such as customer names, organization names, addresses, assigned user IDs, email addresses, phone numbers, and account-related metadata, including the account creation dates. While Cisco confirmed the breach, the company did not disclose the number of users impacted. Inquiries from TechCrunch regarding the scope of the breach went unanswered. Industry observers noted that this incident may be part of a larger trend of attacks targeting Salesforce data, with notable breaches previously affecting companies like Allianz Life, Tiffany and Co., and Qantas. Cisco is recognized as a customer of Salesforce, which raises concerns about the security of data within their systems.