Cisco Source Code Reportedly StolenBy Steven Vaughan-Nichols | Posted 2004-05-17 Email Print
WEBINAR: Event Date: Tues, December 5, 2017 at 1:00 p.m. ET/10:00 a.m. PT
How Real-World Numbers Make the Case for SSDs in the Data Center REGISTER >
Updated: According to one uncomfirmed report, the source code for Cisco's main operating system, IOS 12.3, has been stolen.
Russian security Web site SecurityLab is reporting that the source code for Cisco Systems Inc.'s main networking device operating system was stolen on Thursday.
According to the SecurityLab report, criminal hackers broke into Cisco Systems' corporate network and stole 800MB of source code for IOS 12.3 and 12.3t (an early deployment version of the operating system containing features not found in the vanilla 12.3 version).
In addition, a 2.5MB sample of what is supposedly IOS code was released on an Internet Relay Chat channel as proof of the alleged theft.
The following is an English translation of a portion of the Russian alert from SecurityLab:
- 15 May 2004
Leak of Source Code CiSCO IOS?
SecurityLab discovered that on May 13th, 2004 all the source code of the operating system CISCO IOS 12.3, 12.3t were stolen; these codes are used in most of the networks of CISCO. The total volume of the stolen information totals about 800 Mb in archives.
According to our information, the leak of source code fragments occurred due to the break-in into the corporate network of CISCO Systems. The representatives for CISCO Systems have not commented on the incident.
The information leaked was from a certain individual under the nickname "franz" at #darknet@EFnet IRC where he presented a small part of the source code (around 2.5 Mb) as proof.
IOS 12.3 is the newest main version of San Jose, Calif.-based Cisco's popular operating system. It's used across the company's networking line, including in home office routers (the 800 Series); those for branch offices (the 3700 Series); and those that comprise the Internet backbone (the 7000 Series). Other routers that use the operating system include the 1700, 2500, 2600 and 3600 Series.
eWEEK.com was unable to reach Cisco to confirm the break-in and code theft.
If the report is accurate, this represents a major security threat not just for Cisco users, but for the entire Internet. According to the Dell'Oro Group, a market research firm that specializes in the networking and telecommunications industries, Cisco owns 62 percent of the core router market.
With the proprietary source code in hand, criminal hackers could, in theory, create programs that could cause denial-of-service attacks in Cisco-based networks.
A previous major source code theft of parts of Microsoft's NT 4.0 and Windows 2000 has not led to any security violations. However the alleged theft of the Cisco source code, since it's both the most current edition and all of the code, has the potential to be more damaging.
Margarita Manwelyan contributed to this story.