A cybercriminal tricked a Cisco representative into granting them access to steal the personal information of Cisco.com users, the company said on Tuesday.
Cisco said it discovered the breach on July 24, blaming the incident on a voice phishing or “vishing” call. The hackers accessed and exported “a subset of basic profile information” from the database of a third party cloud-based customer relationship management (CRM) system, according to the company’s disclosure.
Cisco said that the stolen data included the customer’s “name, organization name, address, Cisco assigned user ID, email address, phone number, and account-related metadata,” such as the account creation date.
The networking tech giant did not specify how many Cisco.com users were affected by the breach, and company spokespeople did not respond to that question when TechCrunch reached out on Tuesday.
As Bleeping Computer noted, this breach could be another one in a string of attacks that targeted companies’ Salesforce data, including U.S. insurance giant Allianz Life, luxury retailer Tiffany and Co., Australian airline Qantas, and others.
Cisco is a known customer of Salesforce, according to the cloud giant.
