HPE disclosed that its email system was hacked by a Russia-sponsored actor known as Midnight Blizzard, also called Cozy Bear.
In a regulatory filing, HPE reported it was notified in December 2023 that “the threat actor accessed and exfiltrated data beginning in May 2023 from a small percentage of HPE mailboxes belonging to individuals in our cybersecurity, go-to-market, business segments, and other functions.” During the breach, the hackers compromised “a limited number of SharePoint files as early as May 2023,” HPE’s filing stated.
The group also is believed to have committed the 2020 SolarWinds hack and for breaching Microsoft executives’ emails, announced last week.