DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Dell denies any breach, but scammers are in possession of your service tag numbers?

Posted on January 12, 2016 by Dissent

“A number of Dell customers claim to have been contacted by scammers who had access to specific customer information that should have only been available to Dell. The company says it hasn’t been hacked but won’t offer an explanation for the seemingly stolen data.”

Well, that doesn’t sound good. Read Bill Snyder’s report on CIO.  It sounds like Dell may have an insider problem if they weren’t hacked. In any event, if the service tags info are in the hands of scammers, they didn’t get there magically. Dell needs to figure this out.

Category: Business SectorU.S.

Post navigation

← AU: Google search puts NSW Medical Council on the wrong side of privacy laws
Trend Micro Flaw Would Have Allowed Hackers To Steal Your Passwords →

2 thoughts on “Dell denies any breach, but scammers are in possession of your service tag numbers?”

  1. IA Eng says:
    January 13, 2016 at 7:20 am

    HA! This is what they get for trusting low income overseas help desk people.

    It depends how the service tags are queried from the inside. If they ALL have access to a read-only database, its a huge fail. If it is access a website that you have to enter a tag and then be prompted for data, then it can be tracked by individual IP or user name.

    Sure it doesn’t bring good thoughts, especially to Dell’s security posture if they do not fess up. There are a few things that could be wrong here. One is that some sort of program or service leaks this information. Another is a third party was breached who offers at home assistance. Another is that malware, virus or trojan horse simply collected that data.

    Dell recently had issues with a Cert or two, and some one could have been smart enough to harvest data prior to it all being fixed.

    To me, it’s simple. If I get a call from a 3rd party about my computer system, I laugh at them until they hang up. IF there is a minute chance it’s legit, I’d call back Dell at the number provided on their website, and ask pointed questions about what they are trying to achieve, if it was a legit call. Any computer I buy, I format the drives and rebuild from scratch. That way there is no bloatware, potentially no factory injected malware or trojans and probably no bad Certs or services as well.

  2. IA Eng says:
    January 13, 2016 at 7:29 am

    The story reads as if ONE person wrote that columnist and he writes up a hack story. Unless there are TONS of people complaining the exact same way, like a credit card issue or proprietary service that people buy and has been compromised, a single entity being contacted means squat. He probably has a rootkit, virus, malware, bad Dell cert(s) or other issue that leads crooks to share the info.

    Unless other users fess up and quickly, this one will get swept under the rug and lost in the technology rat race.

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • How the Signal Knockoff App TeleMessage Got Hacked in 20 Minutes
  • Cocospy stalkerware apps go offline after data breach
  • Ex-NSA bad-guy hunter listened to Scattered Spider’s fake help-desk calls: ‘Those guys are good’
  • Former Sussex Police officer facing trial for rape charged with 18 further offences relating to computer misuse
  • Beach mansion, Benz and Bitcoin worth $4.5m seized from League of Legends hacker Shane Stephen Duffy
  • Fresno County fell victim to $1.6M phishing scam in 2020. One suspected has been arrested, another has been indicted.
  • Ransomware Attack on ADP Partner Exposes Broadcom Employee Data
  • Anne Arundel ransomware attack compromised confidential health data, county says
  • Australian national known as “DR32” sentenced in U.S. federal court
  • Alabama Man Sentenced to 14 Months in Connection with Securities and Exchange Commission X Hack that Spiked Bitcoin Prices

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Police secretly monitored New Orleans with facial recognition cameras
  • Cocospy stalkerware apps go offline after data breach
  • Drugmaker Regeneron to acquire 23andMe out of bankruptcy
  • Massachusetts Senate Committee Approves Robust Comprehensive Privacy Law
  • Montana Becomes First State to Close the Law Enforcement Data Broker Loophole
  • Privacy enforcement under Andrew Ferguson’s FTC
  • “We would be less confidential than Google” – Proton threatens to quit Switzerland over new surveillance law

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.