Subj : Dell warns of user data breach 49 million customers affected in To : All From : TechnologyDaily Date : Fri May 10 2024 11:00:06 Dell warns of user data breach 49 million customers affected in security incident, here's what we know Date: Fri, 10 May 2024 09:50:43 +0000 Description: No payment information or emails were stolen, Dell says - but millions of users still had their data breached. FULL STORY ====================================================================== Dell has begun sending breach notification emails to some 49 million people whose data was apparently stolen in a recent cyberattack. The type of information involved includes peoples names, postal addresses, and Dell hardware and order information, such as service tags, item description, order dates, and different warranty information. "We are currently investigating an incident involving a Dell portal, which contains a database with limited types of customer information related to purchases from Dell," the company said in the notification letter. "We believe there is not a significant risk to our customers given the type of information involved." Tangible risk Dell has notified relevant authorities and brought in third-party cybersecurity experts to assess the damage. So far we dont know if this was a simple data smash-and-grab, or a ransomware attempt. The company believes the risk to its customers is not significant since financial and payment information, email addresses, and phone numbers were not stolen in this attack. However, the risk of phishing or even major malware and ransomware attacks still exists, since threat actors can send out personalized letters with removable drives and deploy malicious code that way. It has happened in the past. At the same time, there is always a risk someone most likely already bought the database on the dark web. A cybercriminal with the alias Menelik posted a new thread on a dark web forum, advertising a Dell database fitting the companys description: "49 million customer and other information systems purchased from Dell between 2017-2024." The thread was quickly deleted, which usually happens if someone buys the database. Since the information was most likely already acquired, if you are a Dell customer who purchased hardware between 2017 and 2024, it would be wise to be extra wary of any communication claiming to be from the company, especially if you get it in the mailbox. Via BleepingComputer More from TechRadar Pro Dell reveals it was targeted by cyberattack Here's a list of the best firewalls today These are the best endpoint protection tools right now ====================================================================== Link to news story: https://www.techradar.com/pro/security/dell-warns-of-user-data-breach-49-milli on-customers-affected-in-security-incident-heres-what-we-know --- Mystic BBS v1.12 A47 (Linux/64) * Origin: tqwNet Technology News (1337:1/100) .