November 25, 2023 at 05:08PM
General Electric is investigating a cyberattack where a threat actor breached the company’s development environment and leaked allegedly stolen data. The hacker, known as IntelBroker, attempted to sell access to GE’s development and software pipelines on a hacking forum. They then posted that they are now selling both the network access and stolen data, including DARPA-related military information. While the breach has not been confirmed, IntelBroker has a history of successful cyberattacks, such as the Weee! grocery service breach and the theft of personal information from DC Health Link.
Meeting Takeaways:
– General Electric (GE) is currently investigating claims of a cyberattack in which a threat actor breached their development environment and leaked allegedly stolen data.
– The threat actor, known as IntelBroker, initially attempted to sell access to GE’s “development and software pipelines” for $500 on a hacking forum but was unsuccessful.
– IntelBroker later posted on the forum that they are now selling both the network access and the allegedly stolen data, which includes DARPA-related military information and files.
– GE has acknowledged the hacker’s claims and is currently investigating the alleged data leak.
– It is important to note that the breach has not been confirmed at this time, but IntelBroker has a history of successful, high-profile cyberattacks.
– One notable breach carried out by IntelBroker was the theft of sensitive personal information from the District of Columbia’s D.C. Health Link program, which resulted in media coverage and a congressional hearing to investigate the incident.
– Mila Kofman, the Executive Director of the District of Columbia Health Benefit Exchange Authority, revealed during the hearing that the data exposure occurred due to a misconfigured server that was accessible online.