Cisco: Source Code Theft Doesn't Boost Risk

The networking equipment maker says the publication of some of its proprieetary software doesn't create an increased security risk.

InformationWeek Staff, Contributor

May 21, 2004

2 Min Read
InformationWeek logo in a gray background | InformationWeek

SAN JOSE, Calif. (AP) -- The publication of some of Cisco Systems Inc.'s proprietary software blueprints does not create an increased security risk to the equipment that powers much of the Internet, the company said.

The world's largest maker of networking gear posted a message on its Web site more than a week after a portion of its Internetworking Operating System source code was illegally copied and posted on a Russian site.

Cisco said it was cooperating with the FBI and other law enforcement agencies investigating the theft. It referred questions about the investigation to the FBI, which did not immediately return a phone call seeking comment Friday.

"As a matter of policy, Cisco takes information security very seriously and continues to take active measures to protect its proprietary information as well as employee, customer and partner information," according to the statement, made public Thursday.

Cisco also said the pilfered code has been removed from the foreign Web site where it had been available for several days. The company said the theft "was not the result of a vulnerability in any product or service offered by Cisco."

It also said the company has no reason to believe the leak was the result of any malicious activity by an employee or contractor.

Analysts and experts say it's possible that the source code could be used by hackers to find and exploit vulnerabilities in the software. So far, no such hacks have been reported.

"It represents a risk to the company certainly with respect to potential reputation lost," said Dan Geer, chief scientist of Verdasys, an information security company.

San Jose-based Cisco is the world's leading maker of network routers and switches, the devices that carry and direct traffic over the Internet and other networks.

The software breach is the second time this year a prominent technology company has faced an embarrassing disclosure of its source code. In February, some pieces of Microsoft Corp.'s tightly guarded blueprints for some versions of Windows were circulating on the Internet.

Read more about:

20042004

About the Author

InformationWeek Staff

InformationWeek Staff

Contributor

See more from InformationWeek Staff
Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.
SIGN-UP

You May Also Like

More Insights
Webinars
More Webinars
Reports
More Reports

Editor's Choice

IT Leadership
SolarWinds CEO on Building Trust After Breach, Unifying IT and C-Suite, and GenAI Future
SolarWinds CEO on Building Trust After Breach, Unifying IT and C-Suite, and GenAI Future

Nov 26, 2024

Tech war between China and the USA. Flag of USA and China on a microprocessor
Machine Learning & AI
The New Cold War: US Urged to Form ‘Manhattan Project’ for AGI
The New Cold War: US Urged to Form ‘Manhattan Project’ for AGI

Nov 21, 2024

cloud computing background
IT Infrastructure
6 Cloud Trends to Watch in 2025
6 Cloud Trends to Watch in 2025

Nov 18, 2024

Young businessman working on a virtual screen of the future and sees the inscription: Now hiring
IT Leadership
Help Wanted: IT Hiring Trends in 2025
Help Wanted: IT Hiring Trends in 2025

Nov 20, 2024

Calculator displaying the text "SALARY" on top of $100 bills.
IT Leadership
2024 InformationWeek US IT Salary Report: Profits, Layoffs, and the Continued Rise of AI
2024 InformationWeek US IT Salary Report

Jun 4, 2024

Webinars
More Webinars
White Papers
More White Papers
Reports
More Reports