Hewlett Packard Enterprise (HPE) has revealed that alleged Russia-linked cyberespionage group Midnight Blizzard gained access to its Microsoft Office 365 cloud-based email environment and collected information on the internal functions.
HPE became aware of the intrusion on December 2023 and immediately launched an investigation into the security breach with the help of external cybersecurity experts.
As per the investigation, the attackers gained access to the company environment and exfiltrated data since May 2023. The cyberspies compromised a small percentage of HPE mailboxes belonging to individuals in our cybersecurity, go-to-market, business segments, and other functions.
The investigation is still ongoing. However, the HPE determined that intrusion is likely linked to another attack conducted by the same APT group, of which they were notified in June 2023.
As early as May 2023, the company discovered unauthorized access to and exfiltration of a limited number of SharePoint files.
The company notified law enforcement and regulatory authorities. HPE emphasized that, as of the filing date, the incident has not significantly affected its operations.
Recently, Microsoft warned that some of its corporate email accounts were compromised by the same Russia-linked group Midnight Blizzard. Microsoft notified law enforcement and relevant regulatory authorities.
Unlike Microsoft, HPE has yet to disclose technical details of the security breach.
