Cisco, a leading provider of networking equipment, has acknowledged a cyber-security lapse involving the “successful compromise” of a worker’s personal Google account, though it claims no data was exposed.
In an attempt to convince the victim to accept push notifications for multi-factor authentication (MFA), the attacker used a series of clever voice phishing efforts, according to a blog post by the company’s own Cisco Talos threat research division. The incident occurred in May, and since then the company has been working to stop the onslaught.