News

Hewlett Packard E-Mails Exfiltrated by Midnight Blizzard

Hewlett Packard Enterprise's e-mail was tapped by a threat actor called "Midnight Blizzard" for several months last year, per its latest Form 8-K SEC filing.  

The company was notified about the incident on Dec. 12, 2023, but has since estimated that the attackers "accessed and exfiltrated data beginning in May 2023 from a small percentage of HPE mailboxes belonging to individuals in our cybersecurity, go-to-market, business segments, and other functions."

Hewlett Packard Enterprise officials are still investigating the attack, but they think it was associated with an earlier incident "involving unauthorized access to and exfiltration of a limited number of SharePoint files as early as May 2023." The company was notified about that particular attack in "June 2023."

The SEC filing was noted by malware collector vx-underground in this exTwitter post.

The 2023 attacks, now getting reported in a rather obscure Jan. 24, 2024 Form 8-K SEC filing, were not considered to have had a "material impact on the Company's operations" or "financial condition," Hewlett Packard Enterprise noted. The company had "immediately investigated with the assistance of external cybersecurity experts and took containment and remediation measures intended to eradicate the activity."

Midnight Blizzard is the name for an espionage group said to be affiliated with Russia, although the 8-K SEC filing didn't make such a claim. Microsoft last week reported it had been hit by Midnight Blizzard, where its corporate e-mails got tapped, ostensibly to determine Microsoft's knowledge about the group, per Microsoft's description.

Midnight Blizzard was previously sometimes called "Nobelium." It became notorious for tapping U.S. government e-mails in 2021 using various methods. It compromised SolarWinds' Orion management software and leveraged misconfigurations in Microsoft's Active Directory Federation Services, along with password spray attacks to gain footholds, among other methods.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

Featured

  • Report: Cost, Sustainability Drive DaaS Adoption Beyond Remote Work

    Gartner's 2025 Magic Quadrant for Desktop as a Service reveals that while secure remote access remains a key driver of DaaS adoption, a growing number of deployments now focus on broader efficiency goals.

  • Windows 365 Reserve, Microsoft's Cloud PC Rental Service, Hits Preview

    Microsoft has launched a limited public preview of its new "Windows 365 Reserve" service, which lets organizations rent cloud PC instances in the event their Windows devices are stolen, lost or damaged.

  • Hands-On AI Skills Now Outshine Certs in Salary Stakes

    For AI-related roles, employers are prioritizing verifiable, hands-on abilities over framed certificates -- and they're paying a premium for it.

  • Roadblocks in Enterprise AI: Data and Skills Shortfalls Could Cost Millions

    Businesses risk losing up to $87 million a year if they fail to catch up with AI innovation, according to the Couchbase FY 2026 CIO AI Survey released this month.