Dell has issued a frankly somewhat unclear statement following what appears to be a breach of the dell.com customer website
Dell EMC has sent password reset notifications to all Dell.com customers following “unauthorized activity on our network” that “attempted to extract Dell.com customer information, limited to names, email addresses and hashed passwords” according to an official statement. While claiming that there is “no conclusive evidence” that any of the information being targeted by the attacker was actually extracted, Dell does admit that it is possible some may have been successfully exfiltrated. Which suggests that, as of now, Dell doesn’t have a complete handle on the events that took place on November 9th it would seem. Indeed, there appears to be some confusion in the statements made by Dell itself concerning the reach and impact of this breach.
