Read at time.com
Hewlett Packard Enterprise (HPE) has revealed that its cloud-based email system was breached by suspected state-backed Russian hackers, with data stolen from cybersecurity and other employees. The breach, discovered on January 12, is believed to be the work of Cozy Bear, a unit of Russia's SVR foreign intelligence service. HPE stated that a small percentage of mailboxes belonging to individuals in its cybersecurity, go-to-market, business segments, and other functions were accessed and exfiltrated beginning in May 2023.
Based on our investigation, we now believe that the threat actor accessed and exfiltrated data beginning in May 2023 from a small percentage of HPE mailboxes belonging to individuals in our cybersecurity, go-to-market, business segments, and other functions.
Following HPE's disclosure, Microsoft also reported a breach of its corporate network on January 12, with Cozy Bear being blamed for the intrusion. The breach began in late November and accessed accounts of senior Microsoft executives as well as cybersecurity and legal employees. Cozy Bear was previously responsible for the SolarWinds breach, and its activities mainly target Western governments, IT service providers, and think tanks in the U.S. and Europe.
Microsoft reported last week that it also discovered an intrusion of its corporate network on Jan. 12. The Redmond, Washington, tech giant said the breach began in late November and also blamed Cozy Bear.