The hacker provided a portion of the database for free while offering the full set for purchase on BreachForums at a minimal price. Dell confirmed awareness of the breach and stated that its internal security team is investigating, though it has yet to release further information on the extent of the incident.
This attack follows a previous breach in mid-2024, where over 49 million customer records were exposed due to an unsecured API. Additionally, Dell may have experienced a second breach affecting its Jira, Jenkins, and Confluence infrastructures, with 3.5 GB of sensitive data, including database tables and security vulnerabilities, being leaked.
Experts note that such incidents highlight the growing risks for companies that rely on SaaS platforms like Jira and Confluence, which can serve as potential weak points in their cybersecurity defenses. These events underscore the importance of proactive monitoring and reinforced security measures to prevent future attacks.
Source: Cpomagazine
The European Cyber Intelligence Foundation is a nonprofit think tank specializing in intelligence and cybersecurity, offering consultancy services to government entities. To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net, or you can try yourself using check.website.