Hewlett Packard Enterprise (HPE) is currently conducting an investigation into a possible hacking incident after stolen accounts and confidential information of the company appeared for sale on a hacking forum.
The investigation by HPE revealed that the data was obtained from a “test medium”, and there are no indications of any compromise to HPE’s production media or customer information. Additionally, no ransom demands were received.
The individual behind the sale of the alleged stolen data goes by the name Intelbroker. While this person has published screenshots of some accounting data, the source and method of obtaining the information have not been disclosed.
According to an announcement by Intelbroker, the data includes access to CI/CD, system logs, configuration files, access tokens, HPE Storeonce files (including serial numbers and guarantees), and access passwords, including those for email services.
Intelbroker is known for previous hacking incidents, including the breach of the insurance company DC Health Link, which resulted in congressional hearings after personal data of members and employees of the US House of Representatives was exposed. Another case associated with Intelbroker involves the hacking of General Electric, where information on military projects of the Darpa agency, including SQL files, technical documents, and strategic reports, was stolen.