HPE hacked by same Russian intelligence group that hit Microsoft

Hewlett Packard Enterprise said Wednesday that its cloud-based email system was compromised by the state-sponsored actor known as Midnight Blizzard or Cozy Bear.

The enterprise tech giant revealed the hack in a regulatory filing, saying that "the threat actor accessed and exfiltrated data beginning in May 2023 from a small percentage of HPE mailboxes belonging to individuals in our cybersecurity, go-to-market, business segments, and other functions."

HPE said that it is still investigating the hack, which it believes was related to another incident that occurred in June 2023. During that event, the hackers managed to compromise "a limited number of SharePoint files as early as May 2023," HPE wrote in the filing.

"Following the notice in June, we immediately investigated with the assistance of external cybersecurity experts and took containment and remediation measures intended to eradicate the activity," the company wrote. "Upon undertaking such actions, we determined that such activity did not materially impact the Company."

Earlier in January, Microsoft said that the hacking group—which also is referred to as Nobelium or APT29—compromised some of the email accounts of its high-ranking executives.

This is breaking news. Please check back for updates.

Disclaimer: The copyright of this article belongs to the original author. Reposting this article is solely for the purpose of information dissemination and does not constitute any investment advice. If there is any infringement, please contact us immediately. We will make corrections or deletions as necessary. Thank you.