In the latest news, Dell has faced its third data leak in a week as the hacker known as “grep” continues to target the tech giant. The breach has resulted in the exposure of sensitive internal files, including project documents and Multi-Factor Authentication (MFA) data. Dell, however, has not issued a formal response regarding this incident.
The hacker, under the alias “grep,” has claimed responsibility for the latest breach and has leaked approximately 500 MB of data, which includes internal documents, PDFs, images, internal device testing videos, and MFA data. This breach raises concerns about Dell’s data security and the protection of its sensitive information.
According to reports from Hackread.com, the hacker shared details of the data leak and mentioned that Dell had suffered a third breach involving the exposure of internal files. The hacker’s actions seem strategic, as they anticipate Dell fixing their security vulnerabilities without confirming or denying the claims, allowing them to exfiltrate more data for potential later leaks.
The leaked data includes access vectors and references to Chinese infrastructure, which could potentially impact Dell’s operations, although the scale of this impact is not yet clear.
Among the leaked data are internal tickets titled “Ticket Summary – FY23,” which provide details of Dell’s internal ticketing system. These entries include incident reports on various issues such as Agile access, VPN problems, and application migrations. Additionally, critical infrastructure information such as “China Infra Compute.pdf,” “Global Project FY23.pdf” and “Global Project FY25.pdf,” and “MFA Authentication – Cisco DUO.pdf” were also leaked.
The leaked documents shed light on Dell’s internal operations and project infrastructure, highlighting potential security risks if exploited. The hacker’s actions seem calculated, as they strategically release the data in parts to maximize the impact of their breach.
This recent breach follows two previous incidents involving the same hacker, raising questions about whether these attacks are part of a coordinated effort or individual leaks. The hacker clarified that all the data released was stolen during a single breach and is being gradually leaked over time. Dell has not confirmed the extent of the damage or the method of access by the hacker.
As of now, Dell has not issued a formal statement regarding this latest data leak. With concerns about Dell’s cybersecurity growing due to three data leaks within a week, it is crucial for the company to address these vulnerabilities and strengthen its security measures. Hackread.com has reached out to Dell for comment, and further updates will be provided as more information becomes available.
In conclusion, Dell’s ongoing battle with data breaches highlights the importance of robust cybersecurity measures in today’s digital landscape. It serves as a reminder for organizations to prioritize data security and implement effective strategies to protect their sensitive information from malicious actors.