A notorious hacker known as IntelBroker claims to have breached Hewlett Packard Enterprise (HPE) systems and is now attempting to sell sensitive company data on an underground forum.
The alleged stolen data includes source code from private GitHub repositories, Docker builds, SAP Hybrid systems, and both private and public certificate keys. The hacker also claims to have obtained API access credentials, WePay information, and delivery details of former HPE customers.
According to IntelBroker's post on BreachForums, the unauthorized access to HPE's services lasted approximately two days. The hacker stated this was a direct system breach rather than compromise through a third party.
Early analysis by cybersecurity researchers suggests the exposed data appears to contain development and system environment information, including both open-source and proprietary package management systems.
IntelBroker has established a track record of high-profile attacks in 2024, targeting organizations like General Electric, Europol, and Cisco. While some previous claims about breaches at Apple and Europol were overstated, security experts note that IntelBroker has not been known to completely fabricate breach claims.
HPE has not yet responded to requests for comment about the alleged security incident.
The incident highlights ongoing cybersecurity challenges faced by major technology companies, as sophisticated hackers continue to target valuable intellectual property and customer information.