Summary: Hewlett Packard Enterprise (HPE) disclosed a significant data breach in its Office 365 environment, attributed to the Russian state-sponsored hacking group Midnight Blizzard. The breach, which began in May 2023 and was confirmed in December 2023, involved unauthorized access to email accounts, resulting in the theft of sensitive employee data. HPE is now enhancing its cybersecurity measures and notifying affected individuals while addressing vulnerabilities in cloud-based systems.Affected: Hewlett Packard Enterprise (HPE)
Keypoints :
- The breach mainly targeted HPE’s cybersecurity, marketing, and business email accounts.
- Stolen information included Social Security numbers, driverβs licenses, and credit card details of employees.
- HPE is offering credit monitoring and implementing enhanced security measures in response to the breach.
- Midnight Blizzard is linked to broader espionage efforts and previous high-profile cyberattacks.
- The incident underscores ongoing vulnerabilities in cloud systems like Microsoft Office 365.
Source: https://cybersecuritynews.com/hpe-alerts-employees-of-data-breach/