--- schema_version: "secwatch.filing_event.v1" accession: "0001645590-24-000009" form_type: "8-K" ticker: "HPE" cik: "0001645590" company_name: "Hewlett Packard Enterprise Co" filed_at: "2024-01-24T23:59:59+00:00" generated_at: "2026-06-06T19:17:36.613524+00:00" event_type: "cyber" sentiment: "negative" materiality_score: 0.7 calibrated_materiality_score: 0.7 confidence: "high" source: SEC EDGAR --- # HPE reports unauthorized access by nation-state actor Midnight Blizzard; data exfiltrated from email environment ## Summary - Suspected nation-state actor Midnight Blizzard gained unauthorized access to HPE's cloud-based email environment; notified Dec 12, 2023. - Data exfiltrated from a small percentage of HPE mailboxes, including cybersecurity, go-to-market, and business segment personnel, beginning May 2023. - Incident related to earlier unauthorized access to SharePoint files in June 2023; HPE says that activity did not materially impact the company. - HPE engaged external cybersecurity experts, contained and remediated the incident, and is cooperating with law enforcement. - HPE has not determined that the incident is reasonably likely to materially impact its financial condition or results of operations. ## SEC filing metadata - accession: 0001645590-24-000009 - form_type: 8-K - ticker: HPE - cik: 0001645590 - company_name: Hewlett Packard Enterprise Co - filed_at: 2024-01-24T23:59:59+00:00 - event_type: cyber - sentiment: negative - materiality_score: 0.7 - calibrated_materiality_score: 0.7 - confidence: high - sec_items: 1.05 - EDGAR index: https://www.sec.gov/Archives/edgar/data/1645590/000164559024000009/0001645590-24-000009-index.htm - EDGAR primary document: https://www.sec.gov/Archives/edgar/data/1645590/000164559024000009/hpe-20240119.htm ## Machine-readable alternates - HTML: https://secwatch.observer/filing/0001645590-24-000009 - JSON: https://secwatch.observer/filing/0001645590-24-000009.json - Plain text: https://secwatch.observer/filing/0001645590-24-000009.txt ## Key facts - Cybersecurity Incidents Hewlett Packard Enterprise Co disclosed a cybersecurity incident: Unauthorized access by suspected nation-state actor Midnight Blizzard/Cozy Bear to HPE's cloud-based email environment; data accessed and exfiltrated beginning in May 2023 from a small percentage of HPE mailboxes. Impact: Incident has not had a material impact on operations; the Company has not determined it is reasonably likely to materially impact financial condition or results of operations. Company determined it not material. Discovered 2023-12-12. - Nature: Unauthorized access by suspected nation-state actor Midnight Blizzard/Cozy Bear to HPE's cloud-based email environment; data accessed and exfiltrated beginning in May 2023 from a small percentage of HPE mailboxes. - Impact: Incident has not had a material impact on operations; the Company has not determined it is reasonably likely to materially impact financial condition or results of operations. - Materiality: not material - Discovery: 2023-12-12 source text: As of the date of this filing, the incident has not had a material impact on the Company’s operations, and the Company has not determined the incident is reasonably likely to materially impact the Company’s financial condition or results of operations. evidence_url: https://www.sec.gov/Archives/edgar/data/1645590/000164559024000009/0001645590-24-000009-index.htm This AI-assisted summary is a reading aid. Review the linked SEC EDGAR filing before relying on any specific claim.