HPE Investigates Hacker Claims of Stolen Source Code and Sensitive Data

The company has activated cyber response protocols following allegations by IntelBroker, a notorious cybercriminal group, but has found no evidence of customer data compromise or operational impact.

• IntelBroker, a known cybercriminal group, claims to have stolen HPE source code, private GitHub repositories, and access keys to services like APIs, WePay, and GitHub.
• The hacker also alleges possession of old user delivery records containing personally identifiable information, though HPE states there is no evidence of customer data being involved.
• HPE became aware of these claims on January 16 and has since disabled related credentials and launched an investigation to verify the validity of the allegations.
• IntelBroker has a history of targeting major organizations, including AMD, Cisco, Nokia, and Europol, often selling stolen data on cybercrime forums.
• HPE has previously faced breaches, including a 2023 incident involving its Microsoft Office 365 email environment and a 2018 compromise linked to Chinese hackers.

3 Articles

The Register TechCrunch BleepingComputer