What Happened
In 2024, Dell Technologies suffered a significant data breach when a threat actor exploited vulnerabilities in its online partner portal, registering multiple unverified partner accounts and brute-forcing random service tags to scrape approximately 49 million customer records over three weeks at a rate of 5,000 requests per minute, with data covering Dell systems purchased between 2017 and 2024. The exposed information included customer names, physical addresses, service tags, serial numbers, order numbers, warranty details, and purchase histories, but Dell confirmed no financial data, passwords, email addresses, or phone numbers were compromised. Dell was notified of the vulnerability via emails from the attacker but failed to act promptly due to inadequate authorization checks, lack of rate limiting, and poor alerting; the company acknowledged the incident around May 10, 2024, notified affected customers by email, launched an investigation with law enforcement and forensics experts, and implemented containment measures. Note that “Dellstore” likely refers to this Dell customer database breach, as no separate “Dellstore” incident matches the query, though Dell faced unrelated employee data exposures later in September 2024.
