Topics
Latest
AI
Amazon
Image Credits:Mark Felix / Bloomberg / Getty Images
Apps
Biotech & Health
mood
Image Credits:Mark Felix / Bloomberg / Getty Images
Cloud Computing
Commerce
Crypto
endeavor
EVs
Fintech
fundraise
Gadgets
Gaming
Government & Policy
Hardware
Layoffs
Media & Entertainment
Meta
Microsoft
Privacy
Robotics
security measure
Social
place
Startups
TikTok
Department of Transportation
speculation
More from TechCrunch
Events
Startup Battlefield
StrictlyVC
Podcasts
Videos
Partner Content
TechCrunch Brand Studio
Crunchboard
Contact Us
Hewlett Packard Enterprise has get down notifying person whose personal selective information was stolen during a 2023 cyberattack , which the company blamed on Russian government hacker .
HPE has so far apprize more than a dozen individuals whose data was stolen in the cyberattack , according to TechCrunch ’s review of breach notices filed with at least two U.S. state attorneys general .
The breached data include Social Security numbers , number one wood ’s license entropy , and citation card numbers , per a filingwith the state of Massachusetts .
The rupture touch on to an intrusion beginning May 2023 into HPE ’s email mailboxes and SharePoint system refer to Microsoft SharePoint software that allows party to build intranet portal , both of which were hosted by Microsoft . HPEpublicly disclosed the incidentin January 2024 , confirming that the hackers exfiltrated the depicted object of a “ small numeral ” of its e-mail mailboxes and some SharePoint files .
HPE said the hackers used “ a compromised account to get at inner HPE e-mail boxwood in our Office 365 e-mail environment . ” HPE later told regulators that the stolen postbox datum predominantly belonged to individuals in HPE ’s cybersecurity , go - to - market , and business teams .
When reached by TechCrunch , HPE spokesperson Adam R. Bauer decline to disclose the total number of individuals affected by the breach , but tell the access data was “ limited to entropy contained in the users ’ mailboxes , ” including some HPE employee and a small identification number of customer whose entropy was hold in the email .
HPE ’s spokesperson restate its attribution of the hack writer to a group nickname Midnight Blizzard , which security researchers say islinked to Russia ’s foreign intelligence service , known as the SVR . Midnight Blizzard ( also known as APT29 and Cozy Bear ) has been linked to a numeral of in high spirits - visibility tone-beginning , including the2019 SolarWinds espionage campaigntargeting the federal politics .
Microsoft also substantiate in January 2024 that its corporate internet was compromised by Midnight Blizzard . Microsoft allege that the Russian hackers targeted the email accounting of corporate administrator , as well as senior staff working in cybersecurity , which Microsoft said was likely in an effort tolearn what the society live about the cyberpunk themselves .
Updated with comment from HPE .
