Hewlett Packard Enterprise (HPE) has confirmed it is investigating data breach claims made by the IntelBroker threat group.
Last week, IntelBroker published a statement on a data breach forum saying it had successfully breached HPE's network and nabbed information, offering it for sale on the dark web.
According to reports, the hackers claimed to have successfully snuck into parts of HPE's network for two days, accessing HPE's private GitHub repositories, APIs, and WePay service while managing to steal certificates, source code for Zerto and iLO, Docker builds, and personal data relating to deliveries.
HPE said the apparent hack was still being investigated, but stressed there was no customer data lost and the company was operating as normal.
"HPE became aware on January 16 of claims being made by a group called IntelBroker that it was in possession of information belonging to HPE," a company spokesperson said in a statement to ITPro.
"HPE immediately activated our cyber response protocols, disabled related credentials, and launched an investigation to evaluate the validity of the claims.
"There is no operational impact to our business at this time, nor evidence that customer information is involved."
HPE isn't the only big tech firm targeted by IntelBroker
Other attacks have been attributed to IntelBroker — believed to be led by a Serbian operating out of Russia — including breaches that leaked internal Apple tools and data from Europol, as well a health care provider used by American politicians.
Indeed, HPE was hit by similar data leak claims by IntelBroker this time last year; as with this latest incident, HPE said it hadn't found any evidence of a security breach.
That is a common pattern with IntelBroker claims. Companies find out via a statement on a hacking forum, investigate the incident, and then claim the intrusion wasn't serious and the data taken wasn't of any importance.
Companies targeted by IntelBroker have repeatedly disputed claims about the seriousness of the incident, saying any access was limited to small amounts of unimportant data, suggesting the hacks listed on dark-web forums were exaggerated.
RELATED WHITEPAPER
Indeed, the hacker breached Cisco's systems in October, listing 2.9 terabytes of information on the dark web. But while Cisco admitted the incident, the company has stressed that the data wasn't confidential or sensitive in nature.
That was echoed in a subsequent breach at Nokia. IntelBroker released a cache of data stolen from the telco in November, but Nokia downplayed the incident, stressing that no company or customer data was actually leaked.
IntelBroker responded to such claims by releasing more data from the Cisco breach at the end of last year, and earlier this month said: "I promise you all some HQ leaks soon."
-
Trump's AI executive order could leave US in a 'regulatory vacuum'News Citing a "patchwork of 50 different regulatory regimes" and "ideological bias", President Trump wants rules to be set at a federal level
-
TPUs: Google's home advantageITPro Podcast How does TPU v7 stack up against Nvidia's latest chips – and can Google scale AI using only its own supply?
-
LastPass hit with ICO fine after 2022 data breach exposed 1.6 million users – here’s how the incident unfoldedNews The impact of the LastPass breach was felt by customers as late as December 2024
-
OpenAI hailed for ‘swift move’ in terminating Mixpanel ties after data breach hits developersNews The Mixpanel breach prompted OpenAI to launch a review into its broader supplier ecosystem
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
-
Red Hat reveals unauthorized access to a GitLab instance where internal data was copiedNews Crimson Collective has claimed the attack, saying it has accessed more than 28,000 Red Hat repositories
-
Google warns executives are being targeted for extortion with leaked Oracle dataNews Extortion emails being sent to executives at large organisations appear to show evidence of a breach involving Oracle's E-Business Suite
-
Harrods rejects contact with hackers, after 430,000 customer records stolen from third-party providerNews The luxury department store has denied any link to a failed attack on its systems in May
-
Kido nursery hackers threaten to release more details – along with the personal data of 100 employeesNews The attack is the first to be claimed by the new threat group 'Radiant'
-
Air France and KLM confirm customer data stolen in third-party breachNews A spokesperson told ITPro the airlines are investigating "fraudulent access" to customer data following a third-party breach.
