General Electric (GE), a prominent American multinational operating in power, renewable energy, and aerospace sectors, is investigating a reported cyberattack where a threat actor claimed to have breached the company’s development environment and leaked purportedly stolen data.
Earlier this month, an individual known as IntelBroker attempted to sell access to GE’s “development and software pipelines” on a hacking forum for $500. Failing to find buyers, the threat actor later advertised both network access and allegedly stolen data, including DARPA-related military information and documents, for sale.
Screenshots shared by the threat actor showcased what was claimed to be GE Aviation’s database containing data on military projects.
In response, a GE spokesperson informed BleepingComputer that the company is aware of the claims and is actively investigating the purported data leak, emphasizing a commitment to safeguarding system integrity.
While the breach remains unverified, IntelBroker has a track record of successful cyberattacks, notably breaching the Weee! grocery service and pilfering sensitive personal data from D.C. Health Link, a healthcare marketplace used by White House and House staffers and families.
The D.C. Health Link breach, attributed to IntelBroker in March, drew significant media attention and triggered a congressional hearing to delve into the incident’s causes. Mila Kofman, Executive Director of the District of Columbia Health Benefit Exchange Authority, detailed that the breach stemmed from a misconfigured server, rendering data accessible online.
