legal-document-to-plain-english-translator/”>Try Free Now: Legalese tool without registration

Find a LOCAL lawyer

## HPE Cloud-Based Email System Compromised by Russian State-Sponsored Hacking Group

Antonio Neri, president and chief executive officer of Hewitt Packerd Enterprise (HPE), mentioned the incident during the HPE Discovery CIO Summit in Las Vegas, Nevada, U.S., on Tuesday, June 19, 2018. The summit brought together experts and industry leaders to explore the critical elements CIO’s must address to enable speed and agility, including people, use of data and approaches to security, governance and control.

The enterprise tech giant revealed the hack in a regulatory filing, saying that it was notified in December 2023 that “the threat actor accessed and exfiltrated data beginning in May 2023 from a small percentage of HPE mailboxes belonging to individuals in our cybersecurity, go-to-market, business segments, and other functions.”

Hewlett Packard Enterprise said that its cloud-based email system was compromised by the Russian state-sponsored hacking group known as Midnight Blizzard or Cozy Bear. The breach raised concerns about data access and security, which could potentially impact the company’s financial health and operations.

### How AI legalese decoder can Help

The AI legalese decoder can assist HPE in analyzing and decoding the legal and regulatory implications of the cybersecurity incident. It can help in deciphering complex legal language in regulatory filings, assisting in understanding and complying with legal requirements related to data breaches. Additionally, the AI legalese decoder can provide insights and recommendations to ensure compliance with new Securities and Exchange Commission rules requiring companies to disclose material cybersecurity incidents.

HPE said it is still investigating the hack, which it believes was related to another incident that occurred in June 2023. During that event, the hackers managed to compromise “a limited number of SharePoint files as early as May 2023,” HPE wrote in the filing.

Following the notice in June, the company immediately investigated with the assistance of external cybersecurity experts and took containment and remediation measures intended to eradicate the activity. Upon undertaking such actions, HPE determined that the activity did not materially impact the company.

HPE is working with law enforcement and will provide regulatory notifications if required as the investigation proceeds. The company stated that the hack “has not had a material impact” and that it “has not determined the incident is reasonably likely to materially impact” its financial health or operations.

Both the U.S. Cybersecurity and Infrastructure Security Agency and Microsoft have previously linked the state-sponsored hacking group with the Russian foreign intelligence service SVR.

### Leveraging AI legalese decoder for Cybersecurity Incident Response

The AI legalese decoder can assist HPE in conducting a comprehensive review of legal and regulatory requirements related to cybersecurity incidents. It can help in identifying the potential impact of the hack on the company’s financial health and operations, offering insights on the legal and regulatory obligations for notification and compliance. The AI legalese decoder can also aid in understanding the implications of working with law enforcement and providing regulatory notifications.

Microsoft and HPE’s disclosure of their respective breaches by the Russian-linked hacking group follows newly-enacted Securities and Exchange Commission rules requiring companies to disclose material cybersecurity incidents.

HPE shares were flat in after-hours trading on Wednesday at $15.76.

legal-document-to-plain-english-translator/”>Try Free Now: Legalese tool without registration

Find a LOCAL lawyer

Reference link