General Electric investigates claims of cyber attack, data theft

Original Source: Bleeping Computer

General Electric is investigating claims that a threat actor breached the company's development environment in a cyberattack and leaked allegedly stolen data.

General Electric (GE) is an American multinational company with divisions in power, renewable energy, and aerospace industries.

Earlier this month, a threat actor named IntelBroker attempted to sell access to General Electric's "development and software pipelines" for $500 on a hacking forum.

After not selling said alleged access, the threat actor posted again that they are now selling both the network access and allegedly stolen data.

"I previously listed the access to General Electrics, however, no serious buyers have actually responded to me or followed up. I am now selling the entire thing here separately, including access (SSH, SVN etc)," the threat actor posted to a hacking forum.

"Data includes a lot of DARPA-related military information, files, SQL files, documents etc."

IntelBroker selling alleged GE data and acess on a hacking forum
IntelBroker selling alleged GE data and acess on a hacking forum
Source: BleepingComputer

As proof of the breach, the threat actor shared screenshots of what they claim is stolen GE data, including a database from GE Aviations that appears to contain information on military projects.

In a statement to BleepingComputer, GE confirmed they are aware of the hacker's claims and are investigating the alleged data leak.

"We are aware of claims made by a bad actor regarding GE data and are investigating these claims. We will take appropriate measures to help protect the integrity of our systems," a GE Spokesperson told BleepingComputer.

While the breach has not been confirmed, IntelBroker is a hacker known for successful, high-profile cyberattacks in the past.

Source URL: https://www.bleepingcomputer.com/news/security/general-electric-investigates-claims-of-cyber-attack-data-theft/

Author:

Leave a Comment