Zscaler closes exposed system amid cyberattack rumors.

In response to rumors that a threat actor had hacked and was selling access to their systems, Zscaler has taken swift action to address the situation. The company has confirmed that it has disconnected a “test environment” that was exposed to the internet for a thorough analysis. “Our investigation has revealed an isolated test environment on a single server without customer data that was exposed to the internet,” Zscaler stated in a release. “We can confirm that there is no impact or compromise to customers, their production environments, and corporate data.”

The alert arose after a well-known Serbian threat actor, known as IntelBroker, claimed in a post on X –formerly Twitter– to have obtained potentially unauthorized information from Zscaler and offered to sell access to the cybersecurity company. Upon learning of this situation, the company immediately launched an investigation.

Investigation and Zscaler’s measures

In a previous statement, Zscaler had dismissed the initial rumors, stating that their internal investigations had not shown any evidence that their production or customer environments had been compromised. An employee of the company also refuted the accusations on the social network Mastodon, calling them “completely inaccurate and unfounded.” “We see attack attempts regularly, as well as circulating rumors, but it is crucial to rely solely on Zscaler’s official communications for updates and objective information,” the employee added.

Zscaler has emphasized its commitment to the security and protection of its customers’ data. “We take all threats and potential claims very seriously and will continue with our rigorous investigation,” the company assured.

Origin of the rumors

Rumors of the alleged attack began after IntelBroker, a well-known threat actor, claimed to be selling access to a cybersecurity company with revenues of approximately $1.8 billion. This claim raised alarms and prompted Zscaler to investigate and take preventive measures.

Conclusion

Zscaler has acted swiftly to address rumors of a possible cyberattack by disconnecting an exposed test environment and ensuring no impact on customer data. The company continues its investigation to ensure the security of its systems and stresses the importance of trusting its official communications for accurate and up-to-date information. This incident underscores the constant need for vigilance and rapid response to any potential threat in the world of cybersecurity.

Scroll to Top