DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Dell denies any breach, but scammers are in possession of your service tag numbers?

Posted on January 12, 2016 by Dissent

“A number of Dell customers claim to have been contacted by scammers who had access to specific customer information that should have only been available to Dell. The company says it hasn’t been hacked but won’t offer an explanation for the seemingly stolen data.”

Well, that doesn’t sound good. Read Bill Snyder’s report on CIO.  It sounds like Dell may have an insider problem if they weren’t hacked. In any event, if the service tags info are in the hands of scammers, they didn’t get there magically. Dell needs to figure this out.

Category: Business SectorU.S.

Post navigation

← AU: Google search puts NSW Medical Council on the wrong side of privacy laws
Trend Micro Flaw Would Have Allowed Hackers To Steal Your Passwords →

2 thoughts on “Dell denies any breach, but scammers are in possession of your service tag numbers?”

  1. IA Eng says:
    January 13, 2016 at 7:20 am

    HA! This is what they get for trusting low income overseas help desk people.

    It depends how the service tags are queried from the inside. If they ALL have access to a read-only database, its a huge fail. If it is access a website that you have to enter a tag and then be prompted for data, then it can be tracked by individual IP or user name.

    Sure it doesn’t bring good thoughts, especially to Dell’s security posture if they do not fess up. There are a few things that could be wrong here. One is that some sort of program or service leaks this information. Another is a third party was breached who offers at home assistance. Another is that malware, virus or trojan horse simply collected that data.

    Dell recently had issues with a Cert or two, and some one could have been smart enough to harvest data prior to it all being fixed.

    To me, it’s simple. If I get a call from a 3rd party about my computer system, I laugh at them until they hang up. IF there is a minute chance it’s legit, I’d call back Dell at the number provided on their website, and ask pointed questions about what they are trying to achieve, if it was a legit call. Any computer I buy, I format the drives and rebuild from scratch. That way there is no bloatware, potentially no factory injected malware or trojans and probably no bad Certs or services as well.

  2. IA Eng says:
    January 13, 2016 at 7:29 am

    The story reads as if ONE person wrote that columnist and he writes up a hack story. Unless there are TONS of people complaining the exact same way, like a credit card issue or proprietary service that people buy and has been compromised, a single entity being contacted means squat. He probably has a rootkit, virus, malware, bad Dell cert(s) or other issue that leads crooks to share the info.

    Unless other users fess up and quickly, this one will get swept under the rug and lost in the technology rat race.

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Trump Rewrites Cybersecurity Policy in Executive Order
  • AMI Group – Travel & Tours notice of ransomware attack
  • Resource: Insider Threat reports
  • Za: Cyber extortionist sentenced to eight years in jail
  • ICE takes steps to deport the Australian hacker known as “DR32”
  • Hearing on the Federal Government and AI
  • Nigerian National Sentenced To More Than Five Years For Hacking, Fraud, And Identity Theft Scheme
  • Data breach of patient info ends in firing of Miami hospital employee
  • Texas DOT investigates breach of crash report records, sends notification letters
  • PowerSchool hacker pleads guilty, released on personal recognizance bond

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Privacy Victory! Judge Grants Preliminary Injunction in OPM/DOGE Lawsuit
  • The Decision That Murdered Privacy
  • Hearing on the Federal Government and AI
  • California county accused of using drones to spy on residents
  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.