Cisco Source Code Reportedly Stolen

By Steven Vaughan-Nichols  |  Print this article Print


Desktop-as-a-Service Designed for Any Cloud ? Nutanix Frame

Updated: According to one uncomfirmed report, the source code for Cisco's main operating system, IOS 12.3, has been stolen.

Russian security Web site SecurityLab is reporting that the source code for Cisco Systems Inc.'s main networking device operating system was stolen on Thursday.

According to the SecurityLab report, criminal hackers broke into Cisco Systems' corporate network and stole 800MB of source code for IOS 12.3 and 12.3t (an early deployment version of the operating system containing features not found in the vanilla 12.3 version).

In addition, a 2.5MB sample of what is supposedly IOS code was released on an Internet Relay Chat channel as proof of the alleged theft.

The following is an English translation of a portion of the Russian alert from SecurityLab:

    15 May 2004

    Leak of Source Code CiSCO IOS?

    SecurityLab discovered that on May 13th, 2004 all the source code of the operating system CISCO IOS 12.3, 12.3t were stolen; these codes are used in most of the networks of CISCO. The total volume of the stolen information totals about 800 Mb in archives.

    According to our information, the leak of source code fragments occurred due to the break-in into the corporate network of CISCO Systems. The representatives for CISCO Systems have not commented on the incident.

    The information leaked was from a certain individual under the nickname "franz" at #darknet@EFnet IRC where he presented a small part of the source code (around 2.5 Mb) as proof.

IOS 12.3 is the newest main version of San Jose, Calif.-based Cisco's popular operating system. It's used across the company's networking line, including in home office routers (the 800 Series); those for branch offices (the 3700 Series); and those that comprise the Internet backbone (the 7000 Series). Other routers that use the operating system include the 1700, 2500, 2600 and 3600 Series.

eWEEK.com was unable to reach Cisco to confirm the break-in and code theft.

If the report is accurate, this represents a major security threat not just for Cisco users, but for the entire Internet. According to the Dell'Oro Group, a market research firm that specializes in the networking and telecommunications industries, Cisco owns 62 percent of the core router market.

For insights on security coverage around the Web, check out eWEEK.com Security Center Editor Larry Seltzer's Weblog.

With the proprietary source code in hand, criminal hackers could, in theory, create programs that could cause denial-of-service attacks in Cisco-based networks.

A previous major source code theft of parts of Microsoft's NT 4.0 and Windows 2000 has not led to any security violations. However the alleged theft of the Cisco source code, since it's both the most current edition and all of the code, has the potential to be more damaging.

Margarita Manwelyan contributed to this story.

Check out eWEEK.com's Security Center at http://security.eweek.com for security news, views and analysis.

Be sure to add our eWEEK.com security news feed to your RSS newsreader or My Yahoo page:  

Steven J. Vaughan-Nichols is editor of eWEEK.com's Linux & Open Source Center and Ziff Davis Channel Zone. Prior to becoming a technology journalist, Vaughan-Nichols worked at NASA and the Department of Defense on numerous major technological projects. Since then, he's focused on covering the technology and business issues that make a real difference to the people in the industry.

Submit a Comment

Loading Comments...