Hewlett Packard E-Mails Exfiltrated by Midnight Blizzard -- Redmond Channel Partner

Hewlett Packard E-Mails Exfiltrated by Midnight Blizzard

By Kurt Mackie
January 24, 2024

Hewlett Packard Enterprise's e-mail was tapped by a threat actor called "Midnight Blizzard" for several months last year, per its latest Form 8-K SEC filing.

The company was notified about the incident on Dec. 12, 2023, but has since estimated that the attackers "accessed and exfiltrated data beginning in May 2023 from a small percentage of HPE mailboxes belonging to individuals in our cybersecurity, go-to-market, business segments, and other functions."

Hewlett Packard Enterprise officials are still investigating the attack, but they think it was associated with an earlier incident "involving unauthorized access to and exfiltration of a limited number of SharePoint files as early as May 2023." The company was notified about that particular attack in "June 2023."

The SEC filing was noted by malware collector vx-underground in this exTwitter post.

The 2023 attacks, now getting reported in a rather obscure Jan. 24, 2024 Form 8-K SEC filing, were not considered to have had a "material impact on the Company's operations" or "financial condition," Hewlett Packard Enterprise noted. The company had "immediately investigated with the assistance of external cybersecurity experts and took containment and remediation measures intended to eradicate the activity."

Midnight Blizzard is the name for an espionage group said to be affiliated with Russia, although the 8-K SEC filing didn't make such a claim. Microsoft last week reported it had been hit by Midnight Blizzard, where its corporate e-mails got tapped, ostensibly to determine Microsoft's knowledge about the group, per Microsoft's description.

Midnight Blizzard was previously sometimes called "Nobelium." It became notorious for tapping U.S. government e-mails in 2021 using various methods. It compromised SolarWinds' Orion management software and leveraged misconfigurations in Microsoft's Active Directory Federation Services, along with password spray attacks to gain footholds, among other methods.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

Free Webcast! Learn about Password Management Best Practices

Featured

Microsoft CSPs To Start Selling Windows 10 ESU this Fall

Organizations that want to extend the life of their Windows 10 PCs can begin buying extension plans from Microsoft's Cloud Solution Provider (CSP) partners on Sept. 1.
2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.
Microsoft Gives Security Partners First Dibs at New Windows Security Platform

Microsoft is readying a new "Windows endpoint security platform" as part of its Windows Resiliency Initiative (WRI).
Microsoft Cements Lead in Increasingly AI-Centric Security Analytics

Forrester has singled out Microsoft as the leading cloud hyperscaler in the increasingly AI-driven field of enterprise security analytics.

RCP Update

Email Address*Country*

Please type the letters/numbers you see above.

Hewlett Packard E-Mails Exfiltrated by Midnight Blizzard

Featured

Microsoft CSPs To Start Selling Windows 10 ESU this Fall

2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Microsoft Gives Security Partners First Dibs at New Windows Security Platform

Microsoft Cements Lead in Increasingly AI-Centric Security Analytics

2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Microsoft Gives Security Partners First Dibs at New Windows Security Platform

M-Files Deepens Microsoft 365 Integration Around Document Management

Microsoft Launches Integrated E-mail Security Ecosystem for Defender for Office 365

Channel Veteran Dan Wensley Named GTIA CEO

2025 Microsoft Conference Calendar: For Partners, IT Pros and Developers

Microsoft Gives Security Partners First Dibs at New Windows Security Platform

M-Files Deepens Microsoft 365 Integration Around Document Management

Microsoft Launches Integrated E-mail Security Ecosystem for Defender for Office 365

Channel Veteran Dan Wensley Named GTIA CEO

Partner Guides

Partner's Guide to the Windows Server 2008 Deadline

Partner's Guide to Office 365 Security Costs

Partner's Guide to UCaaS

Partner's Guide to Starter Workloads in Azure

Partner's Guide to Microsoft's Fiscal Year 2019

FREE WEBCASTS FROM OUR SPONSORS

Seamless Transitions: Migrating Your VMware Workloads to Azure

Azure Virtual Desktop: The Smart Choice for Remote Work Success

Veeam Data Cloud for Microsoft 365

Mastering Cost Management in Azure

FREE WHITE PAPERS FROM OUR SPONSORS

The Easy Button eBook: Simplicity of SaaS-Based Backup for Microsoft 365

Unlock the benefits of Microsoft Azure partnership

How Retailers Can Overcome 7 Common Tax Compliance Challenges

Tax Challenges Affecting the Manufacturing Industry