Hewlett Packard Enterprise (HPE) is probing allegations by threat actor IntelBroker, who claims to have accessed the company’s developer environments and stolen sensitive data. The hacker alleges that they infiltrated HPE's API, WePay, and GitHub repositories for two days, exfiltrating certificates, source code, Docker builds, and outdated user data.
HPE stated that while no evidence of a breach or customer data compromise has been found, it has activated cyber response protocols, disabled related credentials, and initiated an investigation. IntelBroker also claims to have previously accessed HPE systems in February 2024.
IntelBroker has a history of high-profile breaches, including attacks on DC Health Link, Nokia, Cisco, and others. HPE itself has faced significant cybersecurity incidents in the past, including breaches by APT10 in 2018, an Aruba Central data leak in 2021, and a 2023 compromise of its Microsoft Office 365 email environment attributed to APT29.
Currently, there is no operational impact on HPE's business from these claims.
Read more...