HPE Alerts Data Breach Victims Following Russian Government Cyberattack

HPE Alerts Data Breach Victims Following Russian Government Cyberattack

In a concerning development for data security, Hewlett Packard Enterprise (HPE) has initiated notifications to individuals affected by a significant cyberattack that occurred in 2023. This breach, attributed to Russian government hackers, has raised alarms about the safety of personal information.

Details of the Cyberattack on HPE

According to a review by TechCrunch, HPE has notified over a dozen individuals regarding the theft of their personal information. The breach has been formally documented in notices submitted to at least two U.S. state attorneys general.

Types of Data Compromised

The compromised data includes:

  • Social Security numbers
  • Driver’s license information
  • Credit card numbers

This alarming information was revealed in a filing with the Massachusetts state authorities.

Timeline of the Incident

The cyber intrusion reportedly began in May 2023, impacting HPE’s email systems and Microsoft SharePoint environments. HPE publicly acknowledged the breach in January 2024, stating that the hackers managed to exfiltrate data from a “small number” of email mailboxes and some SharePoint files.

Method of Attack

According to HPE, the hackers gained access through “a compromised account,” allowing them to infiltrate internal email boxes within the Office 365 environment. The majority of the stolen data belonged to employees within HPE’s cybersecurity, go-to-market, and business teams.

Attribution of the Attack

HPE has linked the cyberattack to a group known as Midnight Blizzard, which security experts believe is associated with Russia’s foreign intelligence service, the SVR. This group, also recognized as APT29, has been implicated in numerous high-profile cyber incidents, including the notorious 2019 SolarWinds espionage attack targeting the U.S. government.

READ ALSO  Data Breach Alert: DISA Reveals Hackers Compromised Personal Information of Over 3 Million Employees

Microsoft’s Involvement

In a related disclosure, Microsoft confirmed in January 2024 that its corporate network was also compromised by Midnight Blizzard. The tech giant reported that Russian hackers specifically targeted the email accounts of corporate executives and senior cybersecurity personnel, likely to gain insight into the company’s understanding of the threat actors.

For more information on cybersecurity best practices, you can visit CISA.

As the investigation continues, affected individuals are urged to monitor their accounts and report any suspicious activity. Staying informed about such breaches is crucial in today’s digital landscape.

Similar Posts

Skype's Shutdown: Celebrating Its Legacy of Mass Adoption of End-to-End Encryption

Skype’s Shutdown: Celebrating Its Legacy of Mass Adoption of End-to-End Encryption

Bysupport

On March 5, 2012, Egyptian revolutionaries stormed the State Security Investigations headquarters in Cairo, revealing evidence of torture and surveillance, including documents and the hacking software FinFisher from Gamma International. This tool could access emails, upload spyware, and monitor communications, compromising user privacy. Skype, launched in 2003 with end-to-end encryption, was initially celebrated for its security but faced scrutiny from law enforcement and was later modified by Microsoft to allow NSA surveillance, undermining its encryption claims. Microsoft announced plans to shut down Skype on May 5, 2025, as its user base dwindles, though its encryption legacy continues in modern apps.

MGM Resorts Reaches Settlement After Major Data Breach Exposes Millions of Customer Records

MGM Resorts Reaches Settlement After Major Data Breach Exposes Millions of Customer Records

Bysupport

MGM Resorts has agreed to a $45 million settlement to resolve class-action lawsuits related to two significant cyberattacks that compromised personal data of millions of customers. The settlement, noted in a court filing, awaits approval from a Las Vegas federal court, with a ruling expected on June 18. The breaches occurred in 2019 and 2023, affecting over 37 million customers. The settlement allocates about 30% for attorney fees, with class action participants potentially receiving up to $75 each. MGM aims to enhance security measures to prevent future incidents as concerns over data protection in the hospitality industry grow.

UK Healthcare Leader HCRG Confirms Ransomware Attack Amidst Sensitive Data Theft Claims

UK Healthcare Leader HCRG Confirms Ransomware Attack Amidst Sensitive Data Theft Claims

Bysupport

The U.K. healthcare sector is on alert as HCRG Care Group investigates a serious cybersecurity incident involving a ransomware breach. The Medusa group claims to have stolen over two terabytes of sensitive data, including employee information, medical records, and financial documents. HCRG, a major independent healthcare provider collaborating with the NHS, confirmed the breach and is working with forensic specialists to address the situation. The company has reported the incident to the U.K.’s Information Commissioner’s Office and assures patients that services continue safely. Medusa is demanding a $2 million ransom to prevent the release of the stolen data.

Lee Enterprises Ransomware Attack Disrupts Payments to Freelancers and Contractors: What You Need to Know

Lee Enterprises Ransomware Attack Disrupts Payments to Freelancers and Contractors: What You Need to Know

Bysupport

Lee Enterprises has been significantly disrupted by a suspected ransomware attack that started on February 3, leading to operational challenges and delayed payments to freelancers and contractors. The attack has caused outages across multiple U.S. newspapers, affecting distribution, billing, collections, and vendor payments. Freelancers report anxiety over unpaid work, with some waiting over a month for payments totaling thousands of dollars. Lee Enterprises acknowledged that hackers encrypted critical applications, raising concerns about the company’s financial stability. The ransomware group Qilin has claimed responsibility, and the company is investigating the situation while no timeline for restoring payment systems has been provided.

Spanish Spyware Startup Mollitiam Industries Ceases Operations: What It Means for the Cybersecurity Landscape

Spanish Spyware Startup Mollitiam Industries Ceases Operations: What It Means for the Cybersecurity Landscape

Bysupport

Mollitiam Industries, a lesser-known Spanish spyware manufacturer, has shut down due to financial struggles, filing for bankruptcy on January 23, 2023. Based in Toledo, the company remained obscure compared to larger firms like Hacking Team and NSO Group. Mollitiam gained attention in 2021 after a brochure outlining its spyware products, capable of unauthorized data access and surveillance, was leaked. Notably linked to a scandal involving the Colombian military’s harassment of journalists, Mollitiam’s operations attracted scrutiny from organizations like Amnesty International. The company’s closure reflects the evolving challenges within the clandestine spyware industry.

Cursor Seeks $10B Valuation Amid AI Coding Boom: Investment Talks Underway

Pentera Secures $60M Funding at $1B Valuation to Revolutionize Cybersecurity Training with Simulated Network Attacks

Bysupport

In today’s rapidly evolving digital landscape, cybersecurity strategies hinge on the effectiveness of strong and intelligent security operations teams. Recently, a Boston-based startup, Pentera, announced a significant funding round that highlights its growth and innovation in providing tools to enhance cybersecurity defense mechanisms. The company has secured $60 million in a Series D funding round,…