Zscaler says it was not hacked after rumors circulate online


Zscaler says that today’s rumors it was breached are false after a threat actor claimed to be selling access to one of the “largest cyber security companies.”

In a Wednesday afternoon post, Zscaler said its ongoing investigation has shown no evidence that they were breached.

“Zscaler is aware of a public X (formerly known as Twitter) post by a threat actor claiming to have potentially obtained unauthorized information from a cybersecurity company. There is an ongoing investigation we initiated immediately after learning about the claims,” reads a post on Zscaler’s Trust site.

“Zscaler’s priority is our customer and production environment and we have not discovered any evidence of incident or compromise to these environments. We are continuing our investigation and closely monitoring the situation,” the company posted in a later update.

A Zscaler employee also shared on Mastodon that the company investigated the rumors and that they are “completely inaccurate and unfounded.”

“I encourage everyone to be cautious about spreading unverified information that could potentially undermine cybersecurity through misinformation and rumors,” reads a post on Mastodon.

“Zscaler’s networks and services remain secure, and we are committed to promoting accuracy over unsubstantiated claims or speculation. Please let me know if you have any other questions.”

Post on mastodon

The rumors started after a well-known threat actor named IntelBroker began selling what they claim is access to a cybersecurity company with a revenue of $1.8 billion. 

IntelBroker's forum post on Breached Forums
IntelBroker’s forum post on Breached Forums
Source: BleepingComputer

This access allegedly includes “Confidential and highly critical logs packed with credentials, SMTP Access, PAuth Pointer Auth Access, SSL Passkeys & SSL Certificates.”

While IntelBroker did not share the name of the company, a screenshot shared with BleepingComputer by digital forensics student James, shows the threat actor claiming it was Zscaler in the Breach Forums shoutbox.

Furthermore, as Zscaler is listed on ZoomInfo with a revenue of $1.8 billion, others tied the forum post to the company, stating they were the ones who were breached.

IntelBroker rose to notoriety after breaching DC Health Link, which led to a congressional hearing after the attack exposed the personal data of U.S. House of Representatives members and staff.

Since then, IntelBroker has been responsible for numerous other breaches, including ones on Acuity, Home Depot, and Weee!.

IntelBroker also claimed to have hacked Hewlett Packard Enterprise (HPE) in February, which the company initially denied but later told BleepingComputer that a test environment was breached.

BleepingComputer contacted Zscaler to learn more about their investigation and these claims but did not receive a response by the time of publication.





Source link