
Have hackers cracked the Black Hat flaw?
By Dan Ilett
Published: 3 August 2005 14:05 GMT
Cisco is advising customers to update passwords for the company's web portal following a security breach reported this morning.
The company has admitted that the compromise could expose customer passwords but gave no further details of the cause of the problem.
In a press statement, Cisco said: "It has been brought to our attention that there is an issue in a Cisco.com search tool that could expose passwords for registered users.
"As a result, to protect our registered Cisco.com users, we're taking the proactive step of resetting Cisco.com passwords. Needless to say we're investigating the incident which does not appear to be due to a weakness in our security products and technologies or with our network infrastructure."
The company also stressed on its website that the incident appears unrelated to flaws in Cisco products.
Security experts, however, are unsure as hackers around the world have been racing to find a vulnerability in Cisco equipment since it was described by security researcher Michael Lynn at the Black Hat conference last week. Cisco and Lynn's former employer, Internet Security Systems, have taken legal action against the researcher following the presentation.
One industry source said: "I think this has the possibility of having a significant impact on corporations and the intellectual property of Cisco."
But others disagree. Michael Maddison, director of enterprise risk services for Deloitte, said: "I think it's more likely to be a vulnerability in web applications than Cisco equipment. That's my opinion - we see vulnerabilities in web pages all the time."
Manager, Application Support Manager, Development Manager, Professional Services Manager, Operations Manager, Escalations Manager, Incident Manager, ...
This role focuses on the development of university technologies and knowledge transfer through a range of activities, from shorter term projects such ...
Advising on intellectual property rights issues Advising on various commercial, state aid and EU procurement aspects of contract matters Offshore ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Tim Ferguson Exclusive: Former MySQL boss Marten Mickos talks open source Why Microsoft could become one of the "biggest friends of open source" and why Oracle getting its hands on MySQL could be "one of the biggest open source coups ever"...
Naked CIO Naked CIO: Cloud computing more expensive than we thought? Smart IT leaders will examine the impact of how they pay for tech