Zscaler takes “test environment” offline after rumors of a breach

Replace 5/8/24: Out unique article was up to date to incorporate new details about a breached “test” surroundings.

Zscaler says that they found an uncovered “test environment” that was taken offline for evaluation after rumors circulated {that a} menace actor was promoting entry to the corporate’s techniques.

In a Wednesday afternoon publish, Zscaler initially said that its ongoing investigation confirmed no proof that its buyer or manufacturing environments had been breached.

“Zscaler’s priority is our customer and production environment and we have not discovered any evidence of incident or compromise to these environments. We are continuing our investigation and closely monitoring the situation,” reads a publish on Zscaler’s Belief web site.

A Zscaler worker additionally shared on Mastodon that the corporate investigated the rumors and that they’re “completely inaccurate and unfounded.”

Nonetheless, in a night replace, Zscaler confirmed that they found an “isolated test environment” uncovered to the web, which they took offline for forensic evaluation.

“Our investigation discovered an isolated test environment on a single server (without any customer data) which was exposed to the internet,” confirmed Zscaler in a night replace.

“The test environment was not hosted on Zscaler infrastructure and had no connectivity to Zscaler’s environments. The test environment was taken offline for forensic analysis.”

Zscaler says that no firm, buyer, or manufacturing environments had been impacted by the incident.

The rumors began after a well-known menace actor named IntelBroker started promoting what they declare is entry to a cybersecurity firm with a income of $1.8 billion. 

IntelBroker's forum post on Breached Forums
IntelBroker’s discussion board publish on Breached Boards
Supply: BleepingComputer

This entry allegedly contains “Confidential and highly critical logs packed with credentials, SMTP Access, PAuth Pointer Auth Access, SSL Passkeys & SSL Certificates.”

Whereas IntelBroker didn’t share the title of the corporate, a screenshot shared with BleepingComputer by digital forensics scholar James, exhibits the menace actor claiming it was Zscaler within the Breach Boards shoutbox.

Moreover, as Zscaler is listed on ZoomInfo with a income of $1.8 billion, others tied the discussion board publish to the corporate, stating they had been those who had been breached.

IntelBroker rose to notoriety after breaching DC Well being Hyperlink, which led to a congressional listening to after the assault uncovered the private information of U.S. Home of Representatives members and workers.

Since then, IntelBroker has been answerable for quite a few different breaches, together with ones on Acuity, Residence Depot, and Weee!.

IntelBroker additionally claimed to have hacked Hewlett Packard Enterprise (HPE) in February, which the corporate initially denied however later advised BleepingComputer that a take a look at surroundings was breached.

BleepingComputer contacted Zscaler to study extra about their investigation and these claims however didn’t obtain a response by the point of publication.

Recent articles

Patch Alert: Essential Apache Struts Flaw Discovered, Exploitation Makes an attempt Detected

î ‚Dec 18, 2024î „Ravie LakshmananCyber Assault / Vulnerability Risk actors are...

Meta Fined €251 Million for 2018 Knowledge Breach Impacting 29 Million Accounts

î ‚Dec 18, 2024î „Ravie LakshmananKnowledge Breach / Privateness Meta Platforms, the...