Zscaler has experienced a supply chain attack that compromised customer information through vulnerabilities in the Salesloft and Drift platforms. The breach underscores the risks associated with third-party services and the importance of securing supply chains in cybersecurity.

Over 6,700 private repositories were made public due to a malicious supply chain attack involving Nx. The attackers used a post-install script to exfiltrate sensitive data, including API keys and tokens, by creating public repositories to store the stolen information. Security firm Wiz reported that more than 20,000 files were compromised, affecting numerous users.