Hewlett-Packard Enterprise Under Investigation for Data Breach
In a recent turn of events, Hewlett-Packard Enterprise (HPE) is grappling with a potential data breach, following claims by a notorious hacker known as “IntelBroker.” This individual asserts to have infiltrated HPE, the enterprise IT division of the prominent hardware company HP. The disclosure was made on January 16 through a cybercrime forum, as reported by TechCrunch.
What Was Compromised?
According to IntelBroker, the compromised data includes sensitive product source code and private GitHub repositories. More alarmingly, access keys to various HPE services such as APIs and platforms like WePay, GitHub, and GitLab are also believed to be part of the stolen trove. Furthermore, the hacker claims to have accessed user data with personally identifiable information related to previous deliveries.
“HPE became aware on January 16 of claims being made by a group called IntelBroker that it was in possession of information belonging to HPE. HPE immediately activated our cyber response protocols, disabled related credentials, and launched an investigation to evaluate the validity of the claims,” said HPE spokesperson Laura von Pentz.
{Source: TechCrunch}
Immediate Actions Taken by HPE
In response to these alarming claims, HPE swiftly activated its cyber response protocols. According to spokesperson Laura von Pentz, they promptly disabled all related credentials and launched an investigation into the legitimacy of these claims. Fortunately, at present, there seems to be no operational impact nor any evidence suggesting customer information has been compromised.
The Bigger Picture
This isn’t the first time HPE has encountered security breaches. Almost exactly a year ago, they faced a breach from Midnight Blizzard, a hacking group with links to Russia. In that instance, hackers managed to access and exfiltrate data from a small percentage of email accounts by exploiting a compromised account.
As cybersecurity threats continue to evolve and increase in sophistication, companies like HPE must remain vigilant and proactive in safeguarding their digital assets. The current situation serves as a stark reminder of the ever-present risks within the cyberspace landscape.
