Hewlett Packard Enterprise (HPE) has apparently suffered another data breach after confirming claims made by a threat actor on a dark web forum.
As reported by BleepingComputer, a hacker using the alias IntelBroker posted a new ad on a hacking forum, offering HPE data for sale. The ad included a screenshot of the alleged data, including stolen HPE credentials.
“Today I am selling the data I acquired from Hewlett Packard Enterprise,” the forum ad reads. “More specifically, the data includes: CI/CD access, system logs, configuration files, access tokens, HPE StoreOnce files (guarantee serial numbers, etc.), and access passwords. (Email services are also included).”
A well-known tasty
Initially, HPE was unaware of any breach of its systems and told the publication it was investigating the claims. It also said there were no extortion attempts either. However, after more thorough investigation, HPE confirmed that the hacker had stolen data from a test environment.
In a brief statement given to BleepingComputerHPEs Sr. Director for Global Communications Adam R. Bauer said: “The data in question appears to be related to information that was in a test environment. There is no indication that these claims involve any compromise of HPE production environments or customer information.”
IntelBroker is a known leaker and exactly a year ago it leaked sensitive data from Weee!. On the now-defunct Breached forum, IntelBroker said they had “a database of 11 million customers who belong to the Saywee.”
The database was allegedly stolen a few days earlier and contained a lot of sensitive information, such as full names, email addresses, phone numbers, the type of endpoint used to communicate with the platform (PC, Android or iOS), order notes, etc. as well as other platform-specific data. The same hacker also breached DC Health Link, General Electric Aviation, and others.