Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cisco IOS Source Code Theft Story Continues

Posted by Hemos on from the bad-news-for-cisco dept.

securitas writes "eWEEK's Steven J. Vaughan-Nichols reports that the source code for Cisco's 'main networking device operating system was stolen on Thursday' (May 13) according to the Russian company SecurityLab. SecurityLab says that criminals broke into Cisco's network and stole 800MB of source code for IOS 12.3 and IOS 12.3t, a pre-release variant. The purported culprit(s) then bragged about the feat in an IRC session and offered 2.5 MB of the code as proof. Industry analysts Dell'Oro Group says that 'Cisco owns 62 percent of the core router market.' More at the Sydney Morning Herald and Windows Network magazine." Our original coverage was here of this story.

32 of 318 comments (clear)

  1. backdoor by sleepnmojo · · Score: 5, Funny

    They could have at least posted the code for the backdoor in all the routers.

    1. Re:backdoor by NickeB · · Score: 2, Funny

      Indeed, the world needs anything, it's more scriptkiddies...

    2. Re:backdoor by thpdg · · Score: 5, Funny

      Have you ever tried to configure any Cisco equipment? Even if you had the password, you'd give up in frustration after a few minutes. The only ones who can do it, are the ones who have a lot of experience with it. That's the real security of the plan!

      --

      -Patrick

      "They never stop thinking about new ways to harm our country and our people, and neither do we."

  2. The internet seems faster today. by JPriest · · Score: 4, Funny

    I notice this morning that since the code leak the Internet has been faster, more stable, and I get packeted less often. Since the code leak I also lost 5 pounds and I swear my erectioin this morning was larger. *phone rings* That must be my bank calling to tell me they lowered my intrest rates.

    --
    Saying Java is nice because it works on all OS's is like saying that anal sex is nice because it works on all genders.
    1. Re:The internet seems faster today. by Anonymous Coward · · Score: 1, Funny

      I notice this morning that since the code leak the Internet has been faster, more stable, and I get packeted less often.

      Well of course it is. This is just a testament to the efficiency of open source software.

    2. Re:The internet seems faster today. by System.out.println() · · Score: 4, Funny

      And on top of all that, I just saved a bunch of money on my car insurance by switching to Geico!

      --
      I've got more mod points and GMail invi
    3. Re:The internet seems faster today. by gosand · · Score: 1, Funny
      *phone rings* That must be my bank calling to tell me they lowered my intrest rates.

      Nope, sorry, they are calling to tell you that your Mor@tgage hav baen d.e.nied

      --

      My beliefs do not require that you agree with them.

  3. Please remove code by fearlezz · · Score: 4, Funny

    Please, everybody! Please remove the source code from the internet ASAP before SCO sees it and claims ownership!!

    --
    .sig: No such file or directory
  4. unlikely by beware1000 · · Score: 4, Funny

    In other news, Microsoft, Valve and Cisco to give free seminars on network security!

  5. no, you misinterpreted their intentions... by Anonymous Coward · · Score: 1, Funny

    They plan to fork the 12.3 tree and release SOI 12.3 server as a free, open-source alternative to IOS.

  6. And the secret backdoor password is... by 192939495969798999 · · Score: 2, Funny

    1...
    2...
    3...
    4...
    5!

    I always thought the big company that would have this happen is Microsoft, but I guess people got ahold of win2k's source a while back... it's still really surprising to see this happen to Cisco. Does it impress anyone else that they have an 800 MB source on the O/S? That's a lot of code!!

    --
    stuff |
    1. Re:And the secret backdoor password is... by Alranor · · Score: 0, Funny

      12345??

      That's the combination to my luggage ....

  7. Suspect profile by Anonymous Coward · · Score: 5, Funny
    Here is my suspect profile:

    1. French or German
    2. Linux/open source zealot
    3. Lives in parents basement
    4. Showers monthly

  8. Lemme guess by eclectro · · Score: 2, Funny


    The password they used to get access to the crown jewels was ciscokid

    Pretty 133t if you ask me.

    --
    Take the cheese to sickbay, the doctor should see it as soon as possible - B'Elanna Torres, "Learning Curve"
  9. Seminar sessions by T-Kir · · Score: 4, Funny

    In the seminars I can imagine how Cisco would explain they're love of being shafted, hence all the backdoor access (pun intended!)...

    ...Microsoft will just blab about how they CAN be trusted, and show everyone pretty pictures and a Matrix spoof to distract everyone...

    ..while Valve gets the dates for the seminar mixed up and turn up 6 months later.

    --
    Are you local? There's nothing for you here!
  10. Makes you think.. by t_allardyce · · Score: 2, Funny

    Hmmm i wonder when the linux kernal source code will be stolen? oh yeah! never!

    --
    This comment does not represent the views or opinions of the user.
  11. Re:Can you imagine... by skasingularity · · Score: 5, Funny
    Sure there would be problems, but I think most people would opt for watching TV or going outside. Some businesses would stall, and slashdot users would probably try and hang themselves with their mice, but I think a relatively large part of the world would continue to operate.

    Just because you rely on the internet, doesn't mean the entire world does too.

  12. Re:Can you imagine... by iapetus · · Score: 5, Funny

    Personally I take offence at your narrow typecasting of Slashdot users.

    Some of us use wireless mice, and would have to resort to hanging ourselves with VGA cables.

    --
    ++ Say to Elrond "Hello.".
    Elrond says "No.". Elrond gives you some lunch.
  13. That's why corps should stick to dial-up.. by Anonymous Coward · · Score: 5, Funny

    ..they would have noticed then if 800 MB was being downloaded.

  14. Re:The one thing not mentioned by LizardKing · · Score: 2, Funny

    Anyone can put together a bunch of seemingly well-written code

    Many "professional" programmers can't, not at my company at least.

    Chris

  15. Cizzz-coeee by caereth · · Score: 2, Funny

    Perhaps we will now see a Cizzz-coeee IOS source code detector van in the near future.

  16. Woohoo by Chuck+Chunder · · Score: 1, Funny

    There's at least a couple of days off work there!

    --
    Boffoonery - downloadable Comedy Benefit for Bletchley Park
  17. Funny lines in the source code by MavEtJu · · Score: 4, Funny

    /*
    * Juniper engineers are weenies!
    */

    --
    bash$ :(){ :|:&};:
  18. QUICK ! React ! by rainer_d · · Score: 2, Funny
    Buy shares in companies that deal or lease fax-machines !
    When the internet gets shut down for a maintenance-period, their business will go through the roof.
    And don't forget to reserve enough machines for yourself, or your business might go through the toilet :-)

    --
    Windows 2000 - from the guys who brought us edlin
  19. Re:I may be ignorant, by slycer9 · · Score: 1, Funny

    >>Uhh ... I'm not sure if this is what cyberfunk2 had in mind, but perhaps it's because you basically quoted the chorus from the song Slipped Away (track 12) from her new Under My Skin album more or less verbatim?

    I may be ignorant
    Or merely misinformed /
    I'm not a fan, but
    I sure can understand...

    Nahh, that couldn't be it. ;-)

    Wow, that's weird as all Hell, and of course there's no way to verify, but I've never heard Avril Lavigne that I know of before. For some reason I'm assuming BritneyPop? My tastes run a bit more along 'Nick Cave' lines.

    Gotta admit, this is a Hell of a way to start my day, I feel like Dali is peeking over my shoulder now, waiting for Rod Serling to step from behind the daisies.

    *shakes head*

    --
    Don't park drunk, accidents cause people.
  20. Re:Can you imagine... by banzai51 · · Score: 5, Funny

    I have stolen the entire source code for Lunix. I'm gong to distribute it and see how long before EVERY linux server is down.

  21. Re:Can you imagine... by Depili · · Score: 1, Funny

    What about us laptop users with wireless networks, finding suitable cables to hang oneself from is hard nowadays.

  22. The GPL doesn't pay by A.+Pizmo+Clam · · Score: 2, Funny

    Call me crazy or mod me down, but I'm positive that this has something to do with CICSO's previous tussle with the GPL .

    I can only assume one of two things:

    1. CICSO's use of code that's open to just anyone allowed a "hacker" to access vulnerabilities in its systems.
    2. Due to its earlier minor and well-intentioned misstep, some GNUlatic decided to take revenge on CICSO.

    In either case, this sends a loud and clear message to all businesses out there: messing with GPL code will get you burned, and burned badly. DANGER WILL ROBINSON!!!.

    Stay away while you still have your security intact. GNUlatics only want to hurt you.

    --

    Thank you for your support.
  23. Poor coding standards by jkabbe · · Score: 3, Funny

    Who would use critical hardware from a company that can't even decide where to put their curly-braces? Are they at the end of the line or on a line by themself? Make up your frickin' mind!!

  24. Re:what the fuck? by Unregistered · · Score: 2, Funny

    "Technically, it's not stolen IP. Apart from the fact that it's not _stolen_ anything (since you can only violate copyright, not steal it), semantics aside it's only _allegedly_ copied code."

    Holy shit! Bill Clinton posts on /.

  25. Not actually stolen by aminorex · · Score: 2, Funny

    In fact, the owner was never deprived of the use
    of their putative property. Thus, no code was stolen.

    --
    -I like my women like I like my tea: green-
  26. Re:Can you imagine... by infochuck · · Score: 3, Funny

    ...I think most people would opt for watching TV or going outside.

    Outside? What's the URL for that?