Skip to main content

It’s time to change your password again as Dell reveals attempted hack

Dell said on Wednesday, November 28, that it recently spotted an attempt by hackers to steal customer data.

The American computer giant said it detected the nefarious activity on November 9, and acted swiftly to block it. Its initial investigation shows that the hackers appeared to be after names, email addresses, and “hashed” passwords, which are hard to decipher.

Recommended Videos

Dell said it’s possible that the cybercriminals managed to get hold of the information stored on one of its servers, though so far it has found “no conclusive evidence that any was extracted.” It added that credit card data and “other sensitive customer information” was not targeted in the cyberattack.

As a precautionary measure, the Texas-based company said it was prompting customers to reset their passwords. It’s also encouraging them to change passwords for other accounts if it’s the same as the one they use at Dell.com.

In an effort to understand the full scale of the cyberattack and track down the perpetrators, Dell said it has hired a digital forensics firm to conduct an independent investigation and has also informed law enforcement.

“In this age of highly sophisticated information security threats, Dell is committed to doing all it can to protect customers’ information,” the company said in a release, adding, “Dell will continue to invest in its information technology networks and security to detect and prevent the risk of unauthorized activity.”

When asked how many customers were affected by the incident, Dell told Digital Trends: “Since this is a voluntary disclosure, and there is no conclusive evidence that customer account information was extracted, it would not be prudent to publish potential numbers when there may be none.”

Customers can keep up to date with any developments by visiting a Dell webpage dedicated to the incident.

Password tips

Dell offered a few tips for creating a new password that many people could find useful.

It suggests, for example, using at least eight characters, preferably a mix of uppercase and lowercase letters, and at least one number. If that sounds obvious, then don’t forget, plenty of people are still using some pretty ridiculous passwords online.

Dell  proposes using a so-called “reminder sentence” about your life that uses the first letter of each word to create the password. For example, “I drink 3 cups of coffee with cream and sugar every day” would make the password Id3cocwcased”.

Alternatively, you might want to consider using a password manager — LastPass is highly rated — that simplifies the process by using a master password to take care of all your different ones across multiple sites and services.

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
This Bing flaw let hackers change search results and steal your files
The new Bing preview screen appears on a Surface Laptop Studio.

A security researcher was recently able to change the top results in Microsoft’s Bing search engine and access any user’s private files, potentially putting millions of users at risk -- and all it took was logging into an unsecured web page.

The exploit was discovered by researcher Hillai Ben-Sasson at their team at Wiz, a cloud security firm. According to Ben-Sasson, it would not only allow an attacker to change Bing search results but would also grant them access to millions of users’ private files and data.

Read more
LastPass reveals how it got hacked — and it’s not good news
A depiction of a hacker breaking into a system via the use of code.

Last year was a particularly bad one for password manager LastPass, as a series of hacking incidents revealed some serious weaknesses in its supposedly rock-solid security. Now, we know exactly how those attacks went down -- and the facts are pretty breathtaking.

It all began in August 2022, when LastPass revealed that a threat actor had stolen the app’s source code. In a second, subsequent attack, the hacker combined this data with information found in a separate data breach, then exploited a weakness in a remote-access app used by LastPass employees. That allowed them to install a keylogger onto the computer of a senior engineer at the company.

Read more
Hacking-as-a-service lets hackers steal your data for just $10
A depiction of a hacker breaking into a system via the use of code.

A new (and cheap) service that offers hackers a straightforward method to set up a base where they manage and perform their cyber crimes has been discovered -- and it’s gaining traction.

As reported by Bleeping Computer, security researchers unearthed a program called Dark Utilities, effectively providing a command and control (C2) center.

Read more