HQ/EMEAFind out how we can help your business
Zscaler claims that it spotted an unprotected “test environment” and immediately brought it offline to assess it after reports spread that a threat actor was selling access to the company’s systems. However, the company claimed that its ongoing investigation found no evidence that its customers or production environments suffered a compromise.
Moreover, a Zscaler employee also stated that the alleged breach is inaccurate and does not have a basis. However, in the latest update, Zscaler acknowledged that they uncovered an isolated test environment exposed to the internet and had been taken offline for forensic analysis.
The company insisted that the test environment was not hosted in their infrastructure and had no connections to the Zscaler primary environments. Additionally, Zscaler stated that the event did not impact the company, its customers, or its production settings.
The rumour about Zscaler erupted after the threat actor IntelBroker started selling access to the company.
The claims against Zscaler began after IntelBroker, a well-known threat actor, initiated selling what they said was access to a cybersecurity company. This access allegedly included confidential and highly critical logs packed with credentials and more.
However, IntelBroker did not reveal the company’s name, but a separate research group obtained a screenshot depicting the threat actor’s claim to be Zscaler in the Breach Forum’s shoutbox.
Furthermore, because the company is listed on ZoomInfo with a revenue of $1.8 billion, other researchers linked the forum post to the corporation, claiming they were the ones who were compromised.
IntelBroker obtained high regard in the cybercriminal landscape after breaching the DC Health Link, which resulted in a congressional hearing after the attack, which disclosed the personal information of US citizens, House of Representatives members, and staff.
Since then, IntelBroker has been responsible for various big-time breaches, including those at Acuity, Home Depot, and Weee!
Recently, IntelBroker also claimed to have infiltrated Hewlett Packard Enterprise (HPE), which the company initially denied but then confirmed.
As of now, the company has yet to disclose additional details about the alleged hack, but they have to address these accusations soon.
