Hewlett Packard Enterprise has begun announcement of individuals whose personal information was stolen during an internet attack in 2023, which the company blamed for the Russian government hackers.
HPE has so far announced more than one dozen individuals whose data were stolen in the cyber attack, according to review of reports of Techcrunch violations filed with at least two US state lawyers.
The violated data included social security numbers, driver license information and credit card numbers, for a submission with the state of Massachusetts.
HPE spokesman Adam R. Bauer did not return the requests for comment with questions about the violation.
The violation is about an intervention that begins May 2023 in HPE email systems and SharePoint environments, referring to Microsoft SharePoint software that allows companies to build intranet portals; Both were received by Microsoft. HPE publicly discovered the incident in January 2024, confirming that the hackers exterminated the contents of a “small number” of its email boxes and some SharePoint files.
HPE said hackers used “a compromised account to access HPE interior boxes in our email environment in Office 365.” HPE later told regulators that stolen mailbox data mainly belonged to individuals in HPE internet security, go to the market and business teams.
HPE attributed Hack to a group called Midnight Blizzard, which security researchers say is associated with Russia’s foreign intelligence service, known as SVR. Midnight Blizzard (also known as APT29) has been linked to a number of high -profile attacks, including the 2019 Solarwinds espion campaign aimed at federal government
Microsoft also confirmed in January 2024 that its corporate network was compromised by Midnight Blizzard. Microsoft said Russian hackers targeted the accounts of the corporate leaders’ emails, as well as the old staff working in the Internet, which Microsoft said it is likely to try to learn what the company knows for hackers themselves .
