Hewlett-Packard Enterprise (HPE) has launched an investigation into a potential data breach after a notorious hacker, known as IntelBroker, claimed to have stolen sensitive information from the company. The hacker, who has previously breached technology giants including AMD, Cisco, and Nokia, alleges to have accessed a trove of data, including product source code, private GitHub repositories, and access keys to several HPE services.

According to a post on a popular cybercrime forum on January 16, IntelBroker claims to have stolen a vast amount of data from HPE, including product source code, private GitHub repositories, and access keys to several HPE services, such as APIs and platforms like WePay, GitHub, and GitLab. The hacker also alleges to have accessed HPE user data, including personally identifiable information related to past deliveries.

In response to the claims, HPE spokesperson Laura von Pentz stated that the company became aware of the allegations on January 16 and immediately activated its cyber response protocols, disabled related credentials, and launched an investigation to evaluate the validity of the claims. Von Pentz emphasized that there is no operational impact to the business at this time, nor evidence that customer information is involved.

Notably, this is not the first time HPE has faced a security breach. Almost exactly a year ago, the company confirmed that Midnight Blizzard, a Russia-linked hacking group, had compromised its cloud-based email environment. The company said hackers had "accessed and exfiltrated data" from a "small percentage" of mailboxes after "leveraging a compromised account to access internal HPE email boxes."

The incident highlights the ongoing threat of cyber attacks on major technology companies, which can have significant implications for their customers and the broader industry. As the investigation continues, it remains to be seen what measures HPE will take to prevent future breaches and protect its sensitive data.

Despite the severity of the allegations, HPE declined to comment on how it was compromised, and IntelBroker did not respond to questions from TechCrunch. The incident serves as a reminder for companies to remain vigilant in the face of increasingly sophisticated cyber threats and to prioritize the security of their systems and data.

The investigation is ongoing, and it is unclear what the full extent of the breach may be. However, one thing is certain – the incident has raised concerns about the security of sensitive data and the need for companies to take proactive measures to protect themselves against cyber threats.