Hewlett-Packard Enterprise is investigating a data breach after a notorious hacker claimed to have stolen sensitive information from the company. The hacker, who uses the alias “IntelBroker,” claims to have stolen data from HPE, the corporate IT division of hardware giant HP. In a post on the popular cybercrime forum on January 16, seen by TechCrunch, IntelBroker said that the stolen data included product source code, a private GitHub repository, as well as access keys to several HPE services, including APIs and platforms like WePay, GitHub and GitLab. The hackers, who previously claimed to have breached tech giants including AMD, Cisco and Nokia, also said they accessed HPE user data, including personally identifiable information related to past posts. In a statement to TechCrunch, HPE spokeswoman Laura von Pentz said, “HPE became aware on January 16 of claims made by a group called IntelBroker that they had HPE information. HPE immediately activated its cyber response protocol, disabled related credentials, and launched an investigation to evaluated the validity of the claim. “There is no operational impact to our business at this time, or evidence that customer information was involved.” When asked by TechCrunch, IntelBroker, which claims to have sold data stolen from HPE, did not respond to TechCrunch’s inquiries. Almost a year ago, HPE confirmed that Midnight Blizzard, a Russian-linked hacking group, had compromised its cloud-based email environment. The company said hackers had “accessed and exfiltrated data” from a “small percentage” mailbox after “using compromised account to access internal HPE mailbox”
HPE is investigating a security breach after hackers claimed to have stolen sensitive data
