Earlier this month, Dell Technologies Inc. ("Dell") released an email notice warning its customers that they had fallen victim to a data breach after a threat actor claimed to have stolen information for approximately 49 million customers. As stated on the breach notice, the technology company confirmed an incident had occurred with a Dell portal that contained customer information related to purchases.
Dell went on to say the third-party hackers gained access to customers' names, physical addresses, Dell hardware and order information, including service tag, item description, date of order, and related warranty information. However, it also noted that the stolen information did not include any financial or payment information, email addresses, or telephone numbers of its customers.
After the incident was uncovered, Dell claims it implemented its security response procedures and began working with law enforcement and a third-party forensics firm to further investigate and monitor the incident. The company itself, while taking precautions to ensure the safety of its customers, does not believe the breach placed any significant risk to its customers. However, it is offering those who notice any suspicious activity on their account the ability to contact their security support team via email.
Dell Customer Data To Be Sold on the Dark Web?
On April 28th, reports on the dark web emerged of a sizeable security breach as a certain threat actor alleged to be selling a database that supposedly contained 49 million customer records from Dell. According to the post, the alleged data contains information on the systems purchased from Dell between 2017 and 2024, as well as up-to-date information registered at Dell servers, which includes vital personal and company information such as:
- Full names
- Addresses
- Cities
- Provinces
- Postal codes
- Countries
- Unique 7-digit service tags of systems
- System shipment dates (warranty start)
- Warranty plans,
- Serial numbers (for monitors)
- Dell customer numbers
- Dell order numbers
For now, the company says it will not disclose how many people were impacted by the breach or if the dark web threat actor was responsible for the breach. However, should Dell release more information regarding the data breach in the future, you can find updates here. Dell customers who believe their information was accessed due to the data breach may also connect with an attorney to learn more about their legal options.
You Can Help Keep Your Data Safe After a Data Breach
After a data breach, it's natural to feel that the protections offered may not be enough, especially when the same company mishandled your private information. However, by taking full advantage of the protections or credit monitoring services they offer and following a few additional steps, you can regain control and ensure your personal data is safe from those who wish to cause you harm.
Keep These Laws in Mind:
Did you know there are laws in place to help keep you safe from fraud? Under the Fair and Accurate Credit Transactions Act, consumers are entitled to one free credit report annually from each of the three major credit reporting bureaus: Equifax, Experian, and TransUnion. Reviewing your reports allows you the ability to correct any errors in your credit history and protect your credit identity. The Fair Credit Reporting Act similarly provides you with certain credit protections, as victims of fraud have the right to be informed the information in their credit file has been used against them in a fair, timely, and accurate manner.
Under the FCRA, you have the right to review that report and correct any errors that may be in your credit file. In the event you discover your information has been used fraudulently, you also have the right to request a "credit freeze" on a credit report. A credit freeze will prohibit a credit bureau from releasing information on the credit report without your expressed authorization as well as prevent credit, loans, and services from being approved in your name without your consent.
Daily Credit Monitoring and Fraudulent Reports:
If you are interested in more frequent credit monitoring, we highly recommend you sign up for credit monitoring sites like Credit Karma, which offers its customers free and daily access to their credit reports and provides suspicious activity alerts and other financial protective services. Should you discover fraudulent activity on your accounts, we also recommend you contact the Federal Trade Commission, your state's Attorney General's office, or law enforcement to report the incident as soon as possible.
Contact a Data Breach Attorney Today
For more information about data breaches and how you can help keep yourself protected from fraud, head to the FTC's website at www.identitytheft.gov. To learn more about the Dell data breach, or if you believe your personal information was accessed, contact a Morgan & Morgan data breach attorney today. Speaking with an experienced data breach attorney can help you better understand the scope of your situation and what your legal options are.