- In mid-January, IntelBroker put an HPE file up for sale
- The hacker claims that it contains sensitive data such as source code and access.
- HPE said it was investigating the claims.
Hewlett Packard Enterprise (HPE) said it was investigating data breach allegations recently made by well-known leaker IntelBroker.
On January 16, IntelBroker (known for its attacks on DC Health Link, Nokia, Cisco, and many others) posted a new thread on the infamous BreachForums, saying “today, I’m selling the Hewlett Packard Enterprise (HPE) data breach.” .
In the thread, the leaker said that along with partners zjj and EnergyWeaponUser, they had been “connecting to some of their services for about 2 days.”
Who is IntelBroker?
The compromised data sold in this new archive includes source code from private GitHub repositories, Docker builds, SAP Hybris, and certificates (including public and private keys). Product source code for Zerto and iLO, user data, API access, WePay, GitHub, and more were also allegedly stolen.
In response, HPE said it rotated the credentials and began its investigation to see if the claims are valid. So far, the company has not seen any evidence of theft:
“HPE became aware on January 16 of claims made by a group called IntelBroker that it was in possession of information belonging to HPE,” said spokeswoman Clare Loxley. beepcomputer. “HPE immediately activated our cyber response protocols, disabled related credentials, and launched an investigation to evaluate the validity of the claims. There is no operational impact to our business at this time, nor evidence that customer information was involved.”
IntelBroker is allegedly a Serbian cybercriminal with a strong track record of data breaches. Active since October 2022, they are known for several high-profile cyberattacks against Acuity (April 2024), Pandabuy (March 2024), and Europol (May 2024).
Through beepcomputer
