Hewlett-Packard Enterprise (HPE) is currently investigating a potential data breach. A prominent hacker known as “IntelBroker” has publicly claimed to have stolen sensitive information from the company.
Scope of Alleged Breach
In a post on a popular cybercrime forum, IntelBroker detailed the alleged breach. The stolen data reportedly includes critical information such as:
- Product source code.
- Private GitHub repositories.
- Access keys to crucial HPE services, including APIs and platforms like WePay, GitHub, and GitLab.
- Personally identifiable information (PII) related to past deliveries.
HPE Responds
HPE spokesperson Laura von Pentz acknowledged the claims.
“HPE became aware on January 16 of claims being made by a group called IntelBroker that it was in possession of information belonging to HPE. HPE immediately activated our cyber response protocols, disabled related credentials, and launched an investigation to evaluate the validity of the claims.”
Prior Security Incident
This incident follows a previous security breach that occurred in January 2024. The Midnight Blizzard hacking group compromised HPE’s cloud-based email environment. This breach resulted in the access and exfiltration of data from a limited number of employee mailboxes.
Impact and Next Steps
HPE has stated that there is no operational impact on its business at this time. Furthermore, there is no evidence that customer information has been compromised. However, the company is actively investigating the extent of the breach and taking necessary measures to enhance its security posture.
This incident underscores the critical need for organizations to address cybersecurity threats proactively.
Robust security measures, including regular security audits, employee training, and incident response plans, are essential for mitigating cyberattack risks and ensuring business continuity in today’s increasingly interconnected world.