HPE confirms data breach probe after IntelBroker claims
IntelBroker claims to have stolen HPE source code in the breach


Hewlett Packard Enterprise (HPE) has confirmed it is investigating data breach claims made by the IntelBroker threat group.
Last week, IntelBroker published a statement on a data breach forum saying it had successfully breached HPE's network and nabbed information, offering it for sale on the dark web.
According to reports, the hackers claimed to have successfully snuck into parts of HPE's network for two days, accessing HPE's private GitHub repositories, APIs, and WePay service while managing to steal certificates, source code for Zerto and iLO, Docker builds, and personal data relating to deliveries.
HPE said the apparent hack was still being investigated, but stressed there was no customer data lost and the company was operating as normal.
"HPE became aware on January 16 of claims being made by a group called IntelBroker that it was in possession of information belonging to HPE," a company spokesperson said in a statement to ITPro.
"HPE immediately activated our cyber response protocols, disabled related credentials, and launched an investigation to evaluate the validity of the claims.
"There is no operational impact to our business at this time, nor evidence that customer information is involved."
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
HPE isn't the only big tech firm targeted by IntelBroker
Other attacks have been attributed to IntelBroker — believed to be led by a Serbian operating out of Russia — including breaches that leaked internal Apple tools and data from Europol, as well a health care provider used by American politicians.
Indeed, HPE was hit by similar data leak claims by IntelBroker this time last year; as with this latest incident, HPE said it hadn't found any evidence of a security breach.
That is a common pattern with IntelBroker claims. Companies find out via a statement on a hacking forum, investigate the incident, and then claim the intrusion wasn't serious and the data taken wasn't of any importance.
Companies targeted by IntelBroker have repeatedly disputed claims about the seriousness of the incident, saying any access was limited to small amounts of unimportant data, suggesting the hacks listed on dark-web forums were exaggerated.
RELATED WHITEPAPER
Indeed, the hacker breached Cisco's systems in October, listing 2.9 terabytes of information on the dark web. But while Cisco admitted the incident, the company has stressed that the data wasn't confidential or sensitive in nature.
That was echoed in a subsequent breach at Nokia. IntelBroker released a cache of data stolen from the telco in November, but Nokia downplayed the incident, stressing that no company or customer data was actually leaked.
IntelBroker responded to such claims by releasing more data from the Cisco breach at the end of last year, and earlier this month said: "I promise you all some HQ leaks soon."
Freelance journalist Nicole Kobie first started writing for ITPro in 2007, with bylines in New Scientist, Wired, PC Pro and many more.
Nicole the author of a book about the history of technology, The Long History of the Future.
-
Security experts issue warning over the rise of 'gray bot' AI web scrapers
News While not malicious, the bots can overwhelm web applications in a way similar to bad actors
By Jane McCallion Published
-
Does speech recognition have a future in business tech?
Once a simple tool for dictation, speech recognition is being revolutionized by AI to improve customer experiences and drive inclusivity in the workforce
By Jonathan Weinberg Published
-
‘It’s your worst nightmare’: A batch of €5 hard drives found at a flea market held 15GB of Dutch medical records – and experts warn it could’ve caused a disastrous data breach
News Robert Polet made a startling discovery after finding hard drives on sale for €5 each in a flea market.
By Solomon Klappholz Published
-
HPE alerts affected staff after Midnight Blizzard breach
News HPE has notified staff affected in a data breach that sensitive personal information, including credit card details, may have been exposed.
By Emma Woollacott Published
-
850,000 patients may have been affected in the Globe Life breach after firm revises victim list
News US insurer Globe Life has revealed more than 850,000 patients may have been impacted in a data breach after initially believing only around 5,000 were impacted.
By Nicole Kobie Published
-
The Gorilla Guide to... How HPE ProLiant Gen11 servers deliver trusted security
Whitepaper How systems, software, and connections are protected
By ITPro Published
-
Securing your network in every direction with zero trust
Whitepaper Webinar on the evolution of network security
By ITPro Published
-
Do more with less: Optimizing servers with HPE to maximize VMware licensing
Whitepaper Your trusted guide through the changes in the virtualization market
By ITPro Published
-
The impact of generative AI on business
Whitepaper Optimal and speedy GenAI computing performance
By ITPro Published
-
Fortify your future with HPE ProLiant Servers powered by Intel
Whitepaper Enhance your security and manage your servers more effectively
By ITPro Published