Something doesn't look right?

Cisco Data Breach Sep 2024

CVE-2024-34102

Subscribe for weekly updates

Security Incident Summary

Severity Score

Moderate

Organization

Cisco

Threat Actor

Unknown

Actor Type

Unknown

Type of Breach

Cross-Site Scripting (XSS) Attack

News Timeline

Sep 06, 2024

Additional Reports

Cisco merch shoppers stung in Magecart attack go.theregister.com - The Cisco merchandise store attack was linked to the exploitation of CVE-2024-34102 affecting Adobe Magento software, which allowed attackers to inject malicious JavaScript to steal transaction data. ...
Show more

Sep 04, 2024

Additional Report

Hackers inject malicious JS in Cisco store to steal credit cards, credentials bleepingcomputer.com - Cisco’s online merchandise store was compromised using a CosmicSting vulnerability (CVE-2024-34102), allowing attackers to inject heavily obfuscated JavaScript code to steal credit card details, posta...
Show more

Organization Details

Organization Size

83300

HQ Location

San Jose, California

Industry

Telecom hardware manufacturing

Security Stack used by Cisco at time of breach (best approximation) Why?

Network Security

VPN/SASE

IDS/IPS

Endpoint Security

EDR

MDM

Identity Management

SSO / MFA

IGA

Application Security

WAF

SCA

Cloud Security

CASB

CWPP

SIEM / Threat Intel

SIEM

TIP

Not right? Contribute more accurate data

What is Cisco?

Cisco Systems, Inc. is a leading technology company headquartered in San Jose, California, primarily known for its networking hardware, software, and telecommunications equipment. Founded in 1984 by Leonard Bosack and Sandy Lerner, Cisco played a pivotal role in the development of the Internet with ...
Show more

Learn more about recent incidents

9 / 10

Okta Oct, 2023

No known CVEs used