HPE has launched an investigation after a well-known hacker announced the sale of information allegedly stolen from the tech giant’s systems.
The notorious hacker IntelBroker announced on January 16 on a cybercrime forum that he is selling files obtained from HPE systems.
The compromised data allegedly includes source code for products such as Zerto and iLO, private GitHub repositories, digital certificates, Docker builds, and even some personal information that the hacker described as “old user PII for deliveries”.
IntelBroker is also offering access to some services used by HPE, including APIs, WePay, GitHub and GitLab.
Contacted by SecurityWeek, HPE said it’s aware of the breach claims and is conducting an investigation.
“HPE became aware on January 16 of claims being made by a group called IntelBroker that it was in possession of information belonging to HPE. HPE immediately activated our cyber response protocols, disabled related credentials, and launched an investigation to evaluate the validity of the claims,” said HPE spokesperson Adam R. Bauer.
“There is no operational impact to our business at this time, nor evidence that customer information is involved,” Bauer added.
IntelBroker targeted several major companies in recent years. Some victims — such as Cisco — have confirmed the authenticity of leaked data, but Cisco and others have noted that impact was not as significant as the hacker suggested.
Related: HPE Says Russian Government Hackers Had Access to Emails for 6 Months
Related: HPE Patches Critical Vulnerabilities in Aruba Access Points
Related: Dell, HPE, MediaTek Patch Vulnerabilities in Their Products
