Breach, Data Security, Threat Intelligence

HPE employees alerted of Midnight Blizzard hack

(Adobe Stock)

(Adobe Stock)

Hewlett Packard Enterprise has informed over a dozen of its employees that their data — including Social Security numbers, credit card numbers, and driver's license details — had been exfiltrated from its Office 365 environment following an attack by Russian state-sponsored threat group Midnight Blizzard, also known as APT29 and Cozy Bear, nearly two years ago, TechCrunch reports.

Infiltration of internal HPE email boxes within the Office 365 environment through a compromised account in May 2023 enabled Midnight Blizzard hackers to access mailbox data from its workers in the cybersecurity, business, and go-to-market teams, according to HPE, which did not specify the impact of the incident but emphasized that only a limited number of employees and customers were affected. Such a development comes more than a year after Microsoft disclosed having had its network breached by Midnight Blizzard, which then sought to compromise the emails of the firm's executives and cybersecurity leaders.

Related

Hacker of SEC’s X account sentenced after admitting guilt

After infiltrating the SEC's X account via SIM swapping conducted with the help of his co-conspirators, Council proceeded to post fraudulent information regarding the planned approval of cryptocurrency-containing exchange-traded funds, which resulted in a Bitcoin price spike, according to the Justice Department.

Extensive Israeli police breach alleged by Iran-linked hackers

Purportedly included in the exfiltrated information were officers' personal details and photos, gun licenses, email addresses, suspects' and criminals' personal data, sex offender employment permit details, and other classified documents, according to Handala, which also alleged the compromise of Israeli Ministry of National Security servers.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

Related Terms

Attack VectorBitBrute ForceByteCipherCiphertextCryptanalysisData Encryption Standard (DES)Hybrid AttackMorris Worm

You can skip this ad in 5 seconds