One Article Review
| Source |  Techworm |
|---|---|
| Identifiant | 8640550 |
| Date de publication | 2025-01-21 15:36:23 (vue: 2025-01-21 10:56:27) |
| Titre | HPE Investigates Hacker’s Claim Of Selling Stolen Source Code |
| Texte | Hewlett Packard Enterprise (HPE) has launched an investigation into a new data breach after a threat actor claimed to have stolen sensitive information from the tech giant\'s systems.
The investigation follows an announcement by the prominent and notorious threat actor “IntelBroker,” who took to BreachForums on January 16th to announce that they are selling files reportedly obtained from HPE’s networks.
For those unaware, IntelBroker is infamous for breaching major organizations like Cisco, Nokia, Europol, and AMD, often stealing and selling sensitive data on cybercrime forums.
Regarding HPE, the compromised data allegedly includes source code for products like Zerto and iLO, private Github repositories, Docker builds, SAP Hybris, Certificates (private and public keys), and even some old user personal identifiable information (PII) used for deliveries.
IntelBroker is also offering selling access to some HPE services, including APIs, WePay, GitHub, GitLab and more.
“Today, I am selling the HPE data breach,” IntelBroker wrote in a BreachForums post. “We have been connecting to some of their services for about 2 days now.”
HPE said it is investigating the breach claims but has found no evidence of a security breach.
It added that there is no operational impact on the company and no evidence that customer information was involved in the cyber incident.
“HPE became aware on January 16 of claims being made by a group called IntelBroker that it was in possession of information belonging to HPE. HPE immediately activated our cyber response protocols, disabled related credentials, and launched an investigation to evaluate the validity of the claims,” an HPE spokesperson said in a statement.
This is not the first time IntelBroker has made such breach claims against HPE. In February 2024, the threat actor claimed to have breached HPE and offered the company\'s stolen data for sale, which reportedly included Continuous Integration/Continuous Deployment (CI/CD) access, system logs, configuration files, access tokens, HPE StoreOnce files (such as serial numbers and warranty information), and access passwords, including email services.
Hewlett Packard Enterprise (HPE) has launched an investigation into a new data breach after a threat actor claimed to have stolen sensitive information from the tech giant\'s systems. The investigation follows an announcement by the prominent and notorious threat actor “IntelBroker,” who took to BreachForums on January 16th to announce that they are selling files reportedly obtained from HPE’s networks. For those unaware, IntelBroker is infamous for breaching major organizations like Cisco, Nokia, Europol, and AMD, often stealing and selling sensitive data on cybercrime forums. Regarding HPE, the compromised data allegedly includes source code for products like Zerto and iLO, private Github repositories, Docker builds, SAP Hybris, Certificates (private and public keys), and even some old user personal identifiable information (PII) used for deliveries. IntelBroker is also offering selling access to some HPE services, including APIs, WePay, GitHub, GitLab and more. “Today, I am selling the HPE data breach,” IntelBroker wrote in a BreachForums post. “We have been connecting to some of their services for about 2 days now.” HPE said it is investigating the breach claims but has found no evidence of a security breach. It added that there is no operational impact on the company and no evidence that customer information was involved in the cyber incident. “HPE became aware on January 16 of claims being made by a group called IntelBroker t |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | 16th 2024 about access activated actor added after against allegedly also amd announce announcement apis are aware became been being belonging breach breached breachforums breachforums post breaching builds but called certificates ci/cd cisco claim claimed claims code company compromised configuration connecting continuous credentials customer cyber cybercrime data days deliveries deployment disabled docker email enterprise europol evaluate even evidence february files first follows forums found from giant github gitlab group hacker’s has have hewlett hpe hpe’s hybris identifiable ilo immediately impact incident included includes including infamous information integration/continuous intelbroker investigates investigating investigation involved january keys launched like logs made major more networks new nokia not notorious now numbers obtained offered offering often old operational organizations packard passwords personal pii possession private products prominent protocols public regarding related reportedly repositories response said sale sap security selling sensitive serial services some source spokesperson statement stealing stolen storeonce such system systems tech those threat time tokens took unaware used user validity warranty wepay which who wrote zerto “hpe “intelbroker “today “we |
| Tags | Data Breach Threat |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.