Hewlett Packard Enterprise is investigating a potential new breach after a threat actor put allegedly stolen data up for sale on a hacking forum, claiming it contains HPE credentials and other sensitive information.
The company has told BleepingComputer that they have not found any evidence of a security breach and no ransom has been requested, but it's investigating the threat actor's claims.
IntelBroker, the threat actor selling the alleged HPE data, shared screenshots of some of the supposedly stolen HPE credentials but has yet to disclose the source of the information or the method used to obtain it.
IntelBroker is best known for the breach of DC Health Link, which led to a congressional hearing after it exposed the personal data of U.S. House of Representatives members and staff.
This investigation comes after HPE disclosed two weeks ago that the company's Microsoft Office 365 email environment was breached in May 2023 by hackers the company believed to be part of the Russian APT29 hacking group linked to Russia's Foreign Intelligence Service.
The company said the Russian hackers stole SharePoint files and data from its cybersecurity team and other departments and maintained access to its cloud infrastructure until December when HPE was again alerted of a breach of its cloud-based email environment.
Days before HPE's Russian hack disclosure, Microsoft revealed a similar breach where APT29 breached some of its corporate email accounts belonging to its leadership team and employees in the cybersecurity and legal departments.
HPE was also breached in 2018 when APT10 Chinese hackers also hacked into IBM's networks and used the access to hack into their customers' devices.
More recently, HPE disclosed in 2021 that data repositories of its Aruba Central network monitoring platform were compromised, enabling attackers to access data about monitored devices and their locations.
Trezor support site breach exposes personal data of 66,000 customers.
Cold storage giant Americold discloses data breach after April malware attack.
HPE: Russian hackers breached its security team's email accounts.
FTC orders Blackbaud to boost security after massive data breach.
Europcar denies data breach of 50 million users, says data is fake.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Mon, 05 Feb 2024 18:35:23 +0000