
Cisco (Partial) Breach
Oct 10, 2025
1,440,000 rows
Added on Oct 3, 2025
What happened in the Cisco (Partial) Breach?
DataBreach.com Team · October 2nd 2025, 8:00 pm EDT
The incident is one of several breaches affecting Salesforce in 2025. A group calling itself "Scattered LAPSUS$ Hunters" released a limited sample of the stolen database on October 3, 2025. The records have since been indexed and anonymized in our search engine.
According to the attackers, the full dataset is scheduled for release on October 10, 2025.
Data found in hackers’ sample - Cisco Systems (Customer & Employee records)
🧍 Personal Information (Contact)
- Full name - ✅ Present
- Title / department - ⛔ Empty
- Birthdate - ⛔ Empty
- Gender - ⛔ Empty
- Middle name / suffix - ⛔ Empty
📧 Contact Information (Customer)
- Email address - ⛔ Empty
- Phone number - ⛔ Empty
- Mobile phone - ⛔ Empty
- Mailing address (street, city, state, ZIP, country) - ✅ Present
- Alternate phone numbers - ⛔ Empty
- Fax - ⛔ Empty
🏢 Account / Company Information
- Account name - ✅ Present (“Test CSOne Customer”)
- Account ID - ✅ Present
- Account type - ✅ Present (“Customer Account”)
- Industry - ⛔ Empty
- Revenue / employees - ⛔ Empty
- Ownership / ticker symbol - ⛔ Empty
- Active flag - ✅ Present (“Active”)
- Partner / portal flags - ✅ Present (
IsCustomerPortal: true,IsPartner: false)
💬 Customer Experience / Service Data
- CSAT and survey fields - ✅ Present (all showing 0.0 or “N/A”)
- Complexity counts / averages - ✅ Present (0.0, “N/A”)
- Hot issues count - ✅ Present (0.0)
- Survey opt-out flag - ✅ Present (false)
- Sync flag - ✅ Present (false)
- Opt-out reason - ⛔ Empty
👩💻 Employee / User Information
- Username - ✅ Present
- Full name - ✅ Present
- Email - ✅ Present
- Company name - ✅ Present (“Cisco Conference Room Pilot Org”)
- Role / job title - ⛔ Empty
- Workgroup and manager info - ✅ Present (manager name and workgroup ID)
- Alias and community nickname - ✅ Present
- Department / division - ⛔ Empty
- Time zone / locale - ✅ Present
- Language - ✅ Present (“en_US”)
- Last login date - ✅ Present
- Created / modified timestamps - ✅ Present
- SystemModstamp - ✅ Present
- Employee number / worker ID - ⛔ Empty
⚙️ System & CRM Metadata
- Record creation / modification dates - ✅ Present
- Account owner / creator IDs - ✅ Present
- SystemModstamp - ✅ Present
- Record type IDs - ✅ Present
- Photo URLs - ✅ Present
- IsDeleted flag - ✅ Present (false)
- Privacy hold flag - ✅ Present (false)
- Currency - ✅ Present (“USD”)
Recent News











Ho-ly G*t: TeamPCP Claims Theft of Thousands of GitHub Internal Repositories
a month ago

17M Nissan cars impacted by large ransomware attack
3 months ago

Iranian hackers just used Stryker’s own security tools to delete itself
4 months ago

Massive Odido cyberattack leaks customer IBANs and government IDs
4 months ago

Figure breach proves blockchain cannot save us from human error
4 months ago

Substack notifies users of data breach affecting nearly 700,000 accounts
5 months ago

UPenn claims "Under 10" victims in 1.2M breach involving donors like Trump and Musk
5 months ago

How 0apt is Using Random Noise to Fake a Ransomware Empire
5 months ago

Hackers Are Now Using Global-e Data to Target Ledger Owners at Their Home Addresses
6 months ago

Meta Denies Instagram Breach After Password Reset Panic
6 months ago

Why the 2.3 Million Wired Record Breach Is a Nightmare for Condé Nast
6 months ago