HPE Investigates Data Breach Claims by IntelBroker

A Threat Actor’s Claim of Stolen Data

Hewlett Packard Enterprise (HPE) is conducting an investigation after a threat actor claimed it had stolen data from the company’s network. IntelBroker, a cyberattack group that has been active since at least 2022, allegedly claimed responsibility for the breach on the BreachForums underground forum.

Previous Breaches by IntelBroker

Previously, IntelBroker claimed to have breached organizations such as AMD, Europol, Cisco, Nokia, and others. Its members have served in leadership positions at BreachForums. This is not the first time HPE has faced breaches at the hands of malicious actors.

Past Breaches by HPE

In 2018, APT10 hackers reportedly compromised some HPE systems, hacking into customer devices. In 2021, its Aruba Central network monitoring platform was breached, allowing threat actors to access data regarding monitored devices.

Investigation and Response

As HPE investigates the most recent data breach claims, it remains unclear if there is any truth to them, and, if so, how the breach occurred. An HPE spokesperson stated, "HPE became aware on Jan. 16 of claims being made by a group called IntelBroker that it was in possession of information belonging to HPE. HPE immediately activated our cyber-response protocols, disabled related credentials, and launched an investigation to evaluate the validity of the claims."

No Evidence of Customer Information Involvement

HPE reported that there is no evidence that customer information was involved, and currently no operational impact to the business.