Hewlett Packard Enterprise (HPE) is investigating claims of a brand new breach after a risk actor mentioned they stole paperwork from the corporate’s developer environments.
The corporate has informed BleepingComputer that it hasn’t discovered any proof of a safety breach, however it’s investigating the risk actor’s claims.
“HPE became aware on January 16 of claims being made by a group called IntelBroker that it was in possession of information belonging to HPE,” spokesperson Clare Loxley informed BleepingComputer.
“HPE immediately activated our cyber response protocols, disabled related credentials, and launched an investigation to evaluate the validity of the claims. There is no operational impact to our business at this time, nor evidence that customer information is involved.”
IntelBroker, who introduced the sale of knowledge allegedly stolen from HPE’s networks, claims that they had entry to the corporate’s API, WePay, and (non-public and public) GitHub repositories for a minimum of two days and stole certificates (non-public and public keys), Zerto and iLO supply code, Docker builds, and outdated person private info used for deliveries.
​IntelBroker put up one other archive of knowledge (together with credentials and entry tokens) allegedly stolen from HPE’s techniques nearly one 12 months in the past, on February 1, 2024. The corporate additionally mentioned on the time that it was investigating the risk actor’s claims however had no proof of a safety breach.
IntelBroker gained notoriety after breaching DC Well being Hyperlink—the group that administers the U.S. Home of Representatives members’ well being care plans—an incident that led to a congressional listening to after the private information belonging to 170,000 affected people was leaked on-line.
Different incidents linked to IntelBroker embrace the breaches of Nokia, Cisco, Europol, House Depot, and Acuity and alleged breaches of AMD, the State Division, Zscaler, Ford, and Normal Electrical Aviation.
HPEÂ was additionally breached in 2018 when APT10 Chinese language hackers reportedly compromised a few of its techniques and used the entry to hack into prospects’ gadgets.
Extra lately, in 2021, the tech big disclosed that the info repositories of its Aruba Central community monitoring platform had additionally been compromised, enabling attackers to entry information about monitored gadgets and their places.
HPE additionally revealed one 12 months in the past that its Microsoft Workplace 365 electronic mail setting was breached in Could 2023 by attackers believed to be a part of the APT29 hacking group, which is linked to Russia’s International Intelligence Service (SVR).
