Tech giant HP Enterprise hacked by Russian hackers linked to DNC breach

Russian Hackers

Hackers with links to the Kremlin are suspected of infiltrating the cloud email environment of information technology company Hewlett Packard Enterprise (HPE) to exfiltrate mailbox data.

“The threat actor accessed and exfiltrated data from a small percentage of the HPE mailboxes of individuals in our cybersecurity, go-to-market, enterprise segments and other functions as of May 2023,” the company said. said in a regulatory filing with the U.S. Securities and Exchange Commission (SEC).

The intrusion is blamed on the Russian state-sponsored group known as APT29, which is also tracked under the names BlueBravo, Cloaked Ursa, Cozy Bear, Midnight Blizzard (formerly Nobelium) and The Dukes.

The revelation comes days after Microsoft implicated the same threat actor in breaching its corporate systems in late November 2023 to steal emails and attachments from senior executives and other individuals in the company’s cybersecurity and legal departments.

HPE said it was notified of the incident on December 12, 2023, meaning the threat actors existed undetected within its network for more than six months.

It also noted that the attack is likely related to a previous security event, also attributed to APT29, that involved unauthorized access to and exfiltration of a limited number of SharePoint files as early as May 2023. It was notified of the malicious activity in June 2023.

However, HPE emphasized that the incident has not had a material impact on its operations to date. The company did not disclose the scope of the attack or the exact email information accessed.

APT29, which is part of Russia’s Foreign Intelligence Service (SVR), has been behind a number of high-profile hacks in recent years, including the 2016 attack on the Democratic National Committee and the 2020 SolarWinds supply chain compromise.

#Tech #giant #Enterprise #hacked #Russian #hackers #linked #DNC #breach

Notify of
Inline Feedbacks
View all comments
Previous Post
Hackers Hijack Software Updates

China-backed hackers hijack software updates to implant ‘NSPX30’ spyware

Next Post
Google Kubernetes

Google Kubernetes Misconfig allows any Gmail account to manage your clusters

Related Posts