Zscaler says that as we speak’s rumors it was breached are false after a menace actor claimed to be promoting entry to one of many “largest cyber security companies.”
In a Wednesday afternoon submit, Zscaler mentioned its ongoing investigation has proven no proof that they have been breached.
“Zscaler is aware of a public X (formerly known as Twitter) post by a threat actor claiming to have potentially obtained unauthorized information from a cybersecurity company. There is an ongoing investigation we initiated immediately after learning about the claims,” reads a submit on Zscaler’s Belief web site.
“Zscaler’s priority is our customer and production environment and we have not discovered any evidence of incident or compromise to these environments. We are continuing our investigation and closely monitoring the situation,” the corporate posted in a later replace.
A Zscaler worker additionally shared on Mastodon that the corporate investigated the rumors and that they’re “completely inaccurate and unfounded.”
“I encourage everyone to be cautious about spreading unverified information that could potentially undermine cybersecurity through misinformation and rumors,” reads a submit on Mastodon.
“Zscaler’s networks and services remain secure, and we are committed to promoting accuracy over unsubstantiated claims or speculation. Please let me know if you have any other questions.”
The rumors began after a well-known menace actor named IntelBroker started promoting what they declare is entry to a cybersecurity firm with a income of $1.8 billion.
Supply: BleepingComputer
This entry allegedly contains “Confidential and highly critical logs packed with credentials, SMTP Access, PAuth Pointer Auth Access, SSL Passkeys & SSL Certificates.”
Whereas IntelBroker didn’t share the title of the corporate, a screenshot shared with BleepingComputer by digital forensics scholar James, reveals the menace actor claiming it was Zscaler within the Breach Boards shoutbox.
Moreover, as Zscaler is listed on ZoomInfo with a income of $1.8 billion, others tied the discussion board submit to the corporate, stating they have been those who have been breached.
IntelBroker rose to notoriety after breaching DC Well being Hyperlink, which led to a congressional listening to after the assault uncovered the non-public information of U.S. Home of Representatives members and employees.
Since then, IntelBroker has been answerable for quite a few different breaches, together with ones on Acuity, Dwelling Depot, and Weee!.
IntelBroker additionally claimed to have hacked Hewlett Packard Enterprise (HPE) in February, which the corporate initially denied however later advised BleepingComputer that a check setting was breached.
BleepingComputer contacted Zscaler to be taught extra about their investigation and these claims however didn’t obtain a response by the point of publication.
