Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cisco Says Vegas Conference Attendees' Information Was Leaked

Posted by timothy on from the hopefully-no-dropped-rows-on-the-flight-home dept.

Julie188 writes "Thousands of people got a nasty e-mail this morning from Cisco. The company was warning people that its attendee registration database for its Cisco Live 2010 event was hacked. Cisco Live 2010 is the company's annual user conference, held last week in Las Vegas with an estimated 18,000 in attendance. If it's not embarrassing enough for a company that sells security gear to get hacked, the e-mail also went out to people who didn't register and didn't attend the event. That raises questions about exactly what database was pried open and how bad the damage is. Cisco's e-mail said the hole was quickly closed and only business-card type information was exposed."

29 of 97 comments (clear)

  1. Routing error by girlintraining · · Score: 4, Funny

    the e-mail also went out to people who didn't register and didn't attend the event.

    That's even more embarassing than a security breach -- it's a routing error. From Cisco.

    --
    #fuckbeta #iamslashdot #dicemustdie
    1. Re:Routing error by skids · · Score: 4, Insightful

      Cisco's customers will not find bureaucratic bungling from them to be anything out of the ordinary, trust me, they are very used to it.

      --
      Someone had to do it.
    2. Re:Routing error by girlintraining · · Score: 2, Funny

      .poster.stats.p.girlfriend = "0.02" .poster.stats.p.unemployed_network_engineed = "0.93"

      --
      #fuckbeta #iamslashdot #dicemustdie
    3. Re:Routing error by Anonymous Coward · · Score: 2, Funny

      It seems jokes automatically route around you. Must be a mis-configured sense of humor. Check your subnet mask.

    4. Re:Routing error by ShakaUVM · · Score: 2, Interesting

      For a long time, you could retrieve all of Cisco's customer data (from people who entered data on their web site) from just changing "submit" to "retreive" in the URL. Haven't tried it recently, but they exposed names, addresses and emails by the thousands for years without doing anything to correct it.

      Never gave me a good impression of Cisco...

    5. Re:Routing error by zippthorne · · Score: 2, Funny

      Perhaps Cisco's purchase of linksys was more like HP's "purchase" of compaq...

      --
      Can you be Even More Awesome?!
  2. TFA by Anonymous Coward · · Score: 5, Informative

    We hope you have returned home safely and are back into your normal routine after a busy week at Cisco Live 2010.

    We are contacting you because on the final afternoon of Cisco Live, one of our vendors identified an unexpected attempt to access attendee information through ciscolive2010.com. The ability to access this information was quickly removed, but not before some conference listings were accessed.

    Cisco Live takes the security of attendee information very seriously and immediately elevated this matter to our chief security officer. His team completed a thorough review and as a result we believe your registration information – specifically your Cisco Live badge number, name, title, company address and email address– was accessed. No other information was available or accessed.

    Although these details are commonly accessed by our World of Solutions partners and often freely provided by Cisco Live attendees, we felt it was our responsibility to inform you as quickly as possible. As we cannot yet confirm the information was accessed by an authorized Cisco Live partner, we encourage you to consider the appropriate precautions to protect against any unwanted email.

    Please accept our apologies for any inconvenience that may result and feel free to contact us directly at support@ciscolive2010.com if you have any additional questions or information.

    We hope you enjoyed your Cisco Live experience and we look forward to welcoming you to Las Vegas in 2011.
    Regards,

  3. so what? by Lord+Ender · · Score: 3, Insightful

    I can't think of anything less important than seeing phonebook-style data made public. Losing credit card numbers or bank account numbers for large groups is bad; losing email addresses is not.

    --
    A slashdotter who didn't build his own computer is like a Jedi who didn't build his own lightsaber.
    1. Re:so what? by foo1752 · · Score: 5, Insightful

      Losing credit card numbers or bank account numbers for large groups is bad; losing email addresses is not.

      Losing email addresses is not AS BAD as losing more sensitive information, but it is still not good. I, for one, wouldn't be happy about that information being exposed.

    2. Re:so what? by MobileTatsu-NJG · · Score: 2, Insightful

      Assuming they weren't arm-twisted into it, I'd say it's cool that they notified everybody.

      --

      "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)

    3. Re:so what? by eln · · Score: 4, Funny

      I agree. I can't even imagine what would happen if anyone found out I had attended a Cisco conference. I would be a social pariah. My children wouldn't be able to look me in the eye. My wife would leave me. The dog would run away. Even my cats would look at me even more disdainfully than they usually do.

    4. Re:so what? by Mikkeles · · Score: 2, Insightful

      The fact that supposedly secure information was accessed is the main story. As in: they broke into your house and only managed to get a stuffed toy (this time).

      --
      Great minds think alike; fools seldom differ.
  4. It could be worse... by Extremus · · Score: 4, Insightful

    They could stay quiet about it.

  5. It's just the website. by Securityemo · · Score: 2, Insightful

    It was just a website hack into a low-security-data backend database. It's not like someone actually subverted any of their products.

    --
    Emotions! In your brain!
  6. Is the email from Cisco legit? by mulgar · · Score: 5, Interesting

    Can someone paste the header to see if the email from "Cisco" is legit or fraudulent? I attended Cisco Live and received no such email, and people who didn't attend received the mail, the Cisco Live team has a database of everyone who registered for the event so if the email was legit I would have expected to see it get sent to the correct audience?

    1. Re:Is the email from Cisco legit? by Anonymous Coward · · Score: 2, Funny

      It's legit, I saw your info in a few of the dumps.

    2. Re:Is the email from Cisco legit? by mulgar · · Score: 5, Interesting

      So I'm a Cisco employee who attended Cisco Live as a speaker last week, I just checked with a contact (who sends emails out from support@ciscolive.com) and they are not aware of any of this - which leads me to think the email is faked. If someone can provide the original email header so we can investigate further that would be appreciated... my contact is checking into this further I will update if I find out anything else...

    3. Re:Is the email from Cisco legit? by bugs2squash · · Score: 5, Funny

      The TAC called, and unless you can set up a second Live 2010 conference and reproduce the problem they're going to close the ticket.

      --
      Nullius in verba
    4. Re:Is the email from Cisco legit? by mulgar · · Score: 5, Informative

      Okay, as far as I can tell from my Cisco Live team contacts the email is legit and was sent from Cisco, but I don't have any further information on the leaked data as I'm not involved there so I won't speculate - there is a team investigating this and I'll leave it up to them to provide further details. The only details I can provide is pretty much already covered in the email sent out: “Cisco has been made aware that some Cisco Live registration information may have been accessible to an outside party through the conference website. Our first priority is the security of our attendees and we take their privacy very seriously. The ability to access this information was immediately removed and the matter was elevated to Cisco’s chief security officer for immediate review. Our review showed that affected information is strictly limited to the name, title, affiliation, and email address of some Cisco Live attendees. No additional personal information – such as credit card data -- was compromised. As the affected information is limited to data that is commonly available via badge swipes onsite and/or the exchange of business cards, we do not believe this presents any threat to our attendees in terms of identity theft. The impact will likely be limited to unsolicited email communication. We are currently reaching out to those individuals to keep them informed and offer our apologies for any inconvenience.” – Cisco spokesperson.

    5. Re:Is the email from Cisco legit? by blair1q · · Score: 3, Funny

      I did not attend and I have not received any emails of this type.

      In case you're being thorough about data, here.

    6. Re:Is the email from Cisco legit? by Eseell · · Score: 2, Funny

      They can't identify any bugs, so they'd like you to update to the latest version of IOS where you're sure to find some.

  7. The other day, upon the stairs . . . by PolygamousRanchKid+ · · Score: 2, Funny

    the e-mail also went out to people who didn't register and didn't attend the event.

    . . . I met a man, who wasn't there.

    He wasn't there again today . . . I think he's from the CIA . . .

    --
    Schroedinger's Brexit: The UK is both in and out of the EU at the same time!
  8. Re:Uh huh by ctchristmas · · Score: 2, Funny

    What happens in Vegas, will be leaked via email a week later... not to mention via facebook and twitter (not myspace because noone uses it anymore)... or when that stripper you married shows up on your porch.

  9. Competition? by FranTaylor · · Score: 2, Insightful

    Do you really think Cisco is going to be happy if their customer list falls into the hands of their competitors? If this data has profile info like "How much Cisco equipment have you bought in the last year" then it could be VERY VERY useful to their competitors.

    1. Re:Competition? by Threni · · Score: 2, Insightful

      It's useful if, for example, their competitors want to let everyone know that they buy stolen lists of email addresses to spam/cold call people with.

    2. Re:Competition? by MobileTatsu-NJG · · Score: 2, Insightful

      I thought 'really really useful' would have a more interesting meaning than "SPAM PEOPLE WHO'VE ALREADY PURCHASED THE PRODUCTS THEY NEED". My bad.

      --

      "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)

  10. They were going to let their "partners" spam you by Animats · · Score: 4, Interesting

    Cisco collected that information so they and their "partners" could spam you: "... we believe your registration information - specifically your Cisco Live badge number, name, title, company address and email address- was accessed. No other information was available or accessed. Although these details are commonly accessed by our World of Solutions partners".... Their "partner locator" finds 16601 partners in the United States, 3241 in China, 998 in Russia, 427 in Romania. 330 in Nigeria, and 12 in Afghanistan. So just about anybody who wants that data could get it.

    They're just irked that someone who didn't pay for their mailing list might spam you.

  11. registration of these events done by others than by Locutus · · Score: 2, Interesting

    these conferences always look like they are run by someone other than the company or companies owning the show. For the Cisco Live 2010 conference, Wingateweb.com ran the registration or it looks like they did because they own the domain( ciscolive2010.com ). When I looked up who owned that domain and then looked at their website( wingateweb.com ) and this is what it says:

    Trusted Technology
    World-class Delivery

    Event organizers around the world rely on WingateWeb’s event management software and services to deliver the world’s top conferences, conventions and trade shows. Optimize your strategy, maximize your audience and deliver perfect events every time with WingateWeb.

    So before people blame Cisco for someone getting into the database and getting attendee data dumps you might want to ask who really was to blame. And FYI, very often the on site software for registering and checking in is not only run on Windows laptops but they are very poorly done. Way to many times redundant information was requested and don't even try to use tab completion for city, state, etc, tab navigation, or the space bar for button activation. I would not doubt that many many other conference databases have been hacked but this Cisco conference hack was found out because they are very security minded and looked into it.

    LoB

    --
    "Anyone who stands out in the middle of a road looks like roadkill to me." --Linus
  12. Re:They were going to let their "partners" spam yo by Anonymous+Psychopath · · Score: 3, Informative

    Cisco's entire worldwide partner ecosystem != Cisco Live! World of Solutions, which was a vendor booth exhibition at Cisco Live in Las Vegas last week.

    I'm not sure how many partners were in World of Solutions but there were perhaps 200. Companies like EMC, APC, CA, etc. You want a light-up rubber ball or blinking shot glass or whatever shiny object they were giving away at their booths, you let them scan your badge. Some had booth babes running around with scanners, which was fairly effective at a conference where 95% of the attendees are men.

    Every conference I've ever attended has worked this way.

    --

    Eagles may soar, but weasels don't get sucked into jet engines.