Subj : HPE says Russian Midnight Blizzard hackers hit security team emai To : All From : TechnologyDaily Date : Thu Jan 25 2024 11:15:04 HPE says Russian Midnight Blizzard hackers hit security team emails Date: Thu, 25 Jan 2024 11:00:57 +0000 Description: A "small percentage" of email inboxes were accessed, HPE said in a filing with the SEC. FULL STORY ====================================================================== Russian state-sponsored threat actors known as Midnight Blizzard breached HPEs email environment late last year and stole sensitive data from its employees inboxes. HPE confirmed the news in a new 8-K submission with the U.S. Securities and Exchange Commission (SEC) last week, BleepingComputer finds. As per the filing, the company spotted the attack on December 12 and moved in to investigate and remedy the incident. The investigation uncovered that since May 2023, Midnight Blizzard (also known as Cozy Bear, or Nobelium) had access to a small percentage of HPEs cloud-based email inboxes. BleepingComputer reports that HPE uses the Microsoft 365 cloud productivity suite. No material impact The inboxes belong to HPE employees working in cybersecurity, go-to-market, business, and other segments. HPE further explained that the incident is likely related to an earlier attack, of which the company was made aware in June last year. In that attack, Midnight Blizzard was accessing and pulling SharePoint flies from the company. That being said, HPE doesnt believe the attack will have a material impact on the company, or that it will disrupt its operations. Upon undertaking such actions, we determined that such activity did not materially impact the Company, HPE said in the filing. As of the date of this filing, the incident has not had a material impact on the Companys operations, and the Company has not determined the incident is reasonably likely to materially impact the Companys financial condition or results of operations. The police has been notified, HPE concluded, adding that its currently assessing its regulatory notification obligations. Nobelium seems to have had a busy end to the year in 2023, as roughly at the same time, it also managed to break into Microsoft. Earlier this week, the Redmond giant announced email accounts belonging to highly-positioned individuals having been breached by the same threat actor. The emails belong to senior leadership, as well as those working in cybersecurity and legal departments. More from TechRadar Pro Microsoft says it was hit by Russian hackers who wanted to know its secrets Here's a list of the best firewalls around today These are the best endpoint security tools right now ====================================================================== Link to news story: https://www.techradar.com/pro/security/hpe-says-russian-midnight-blizzard-hack ers-hit-security-team-emails --- Mystic BBS v1.12 A47 (Linux/64) * Origin: tqwNet Technology News (1337:1/100) .