CyberSecurity news
@www.bleepingcomputer.com
//
A threat actor known as IntelBroker has claimed responsibility for a significant data breach at Hewlett Packard Enterprise (HPE), a major IT provider. The group alleges they gained access to a trove of sensitive data, including source code, certificates, and Personally Identifiable Information (PII), which is now reportedly being offered for sale on the dark web. This claim was initially made public by IntelBroker on a prominent cybercrime forum, and was revealed to Hackread.com by the hacker themselves. The hacker claims the attack was direct, targeting HPE's infrastructure rather than exploiting a third party.
The allegedly stolen data includes a range of critical information such as private GitHub repositories, Docker builds, and cryptographic keys. Notably, the threat actor is also claiming to have compromised the product source code for HPE's key technologies like Zerto and iLO, as well as legacy user PII related to deliveries. Access to APIs, WePay, and self-hosted GitHub repositories is also said to be compromised. Initial analysis of a data tree shared by IntelBroker appears to confirm these claims, with directory structures including private keys and certificates. The extent of the breach is currently under investigation.
ImgSrc: www.bleepstatic
References :
- ciso2ciso.com: Hackers Claim Breach of Hewlett Packard Enterprise, Lists Data for Sale
- gbhackers.com: Threat Actor IntelBroker Allegedly Claiming Breach of Hewlett Packard Enterprise Data
- hackread.com: Threat actor IntelBroker has claimed a significant data breach at Hewlett Packard Enterprise (HPE), potentially exposing sensitive information.
- gbhackers.com: Threat Actor IntelBroker Allegedly Claiming Breach of Hewlett Packard Enterprise Data
- ciso2ciso.com: Hackers Claim Breach of Hewlett Packard Enterprise, Lists Data for Sale – Source:hackread.com
- social.skynetcloud.site: Hackers Claim Breach of Hewlett Packard Enterprise, Lists Data for Sale – Source:hackread.com
- techcrunch.com: HPE investigating security breach after hacker claims theft of sensitive data.
- ciso2ciso.com: HPE Investigating Breach Claims After Hacker Offers to Sell Data – Source: www.securityweek.com
- The Register - Security: HPE probes IntelBroker's bold data theft boasts
- socradar.io: IntelBroker Targets HPE, Carrefour France Leak, Nillious Android RAT
- Techzine Global: HPE investigates possible data breach by IntelBroker
- securityaffairs.com: HPE is investigating IntelBroker’s claims of the company hack
- www.csoonline.com: HPE’s sensitive data exposed in alleged IntelBroker hack
- ciso2ciso.com: HPE investigating breach claims after hacker offers to sell data.
- cyberplace.social: HPE say they are investigating a breach
- ciso2ciso.com: HPE Investigates After Alleged Data Breach – Source: www.darkreading.com
- ciso2ciso.com: HPE Investigates After Alleged Data Breach
- www.bleepingcomputer.com: Hewlett Packard Enterprise (HPE) is investigating claims of a new breach
- BleepingComputer: Hewlett Packard Enterprise (HPE) is investigating claims of a new breach after a threat actor said they stole documents from the company's developer environments.
- ciso2ciso.com: IntelBroker has struck again. This time, the notorious BreachForums bigwig, which has a long list of high-profile victims, including Europol, Cisco, and GE, has claimed to have breached HPE’s network.
Classification:
- HashTags: #DataBreach #CybersecurityIncident #HPE
- Company: Hewlett Packard Enterprise
- Target: HPE
- Type: DataBreach
- Severity: Major