Hewlett Packard Enterprise said it is investigating claims a threat group gained access to a trove of sensitive company data. 

The threat group, IntelBroker, posted a claim on BreachForums that it had access to a large trove of HPE data, according to researchers from Arctic Wolf.

The allegedly stolen data includes private GitHub repositories, Docker builds, source code and other information, according to the posting. 

Upon learning of the claim Thursday, the company immediately activated cyber response protocols, disabled related credentials and launched an investigation to determine whether the claims were valid, a spokesperson said Tuesday via email. 

“There is no operational impact to our business at this time, nor evidence that customer information is involved,” the spokesperson said.

IntelBroker first came to prominence in 2022 and has been linked to a number of high-profile attacks. 

The group previously exploited assets in public facing applications to gain initial access, Arctic Wolf researchers said. The group has also allegedly sold access to compromised systems. 

Researchers said the group has a history of inflating claims related to past threat activity. 

“They have been known to exaggerate the significance of data exposed in past breaches, so it is prudent to remain skeptical of sweeping claims made on their part,” Arctic Wolf researchers said through a spokesperson.

HPE has been involved in a number of high-profile cyberattacks in recent years. A year ago, the company disclosed a monthslong intrusion by Midnight Blizzard, which impacted a limited amount of the company’s SharePoint and mailbox environments.

A 2021 attack impacted a limited number of data repositories in the company’s Aruba Central cloud environment.