Dell has confirmed to BleepingComputer that it is investigating claims of a recent data breach after a threat actor leaked information on over 10,000 employees.
The hacker, known as “grep,” posted allegations yesterday, stating that Dell experienced a “minor data breach” in September 2024, which exposed sensitive internal data of employees and partners.
In a hacking forum post, grep revealed that the stolen data includes employee identifiers, full names of Dell employees and partners, their employment status, and an internal identification string.
While only a small portion of the data was shared for free, access to the full database was offered for 1 BreachForums credit, approximately $0.30.
In response to an inquiry about these claims, Dell told BleepingComputer: “We are aware of the claims and our security team is currently investigating.”
Notably, grep was involved in another alleged high-profile data breach on September 9, 2024, claiming to have compromised the French IT company Capgemini. He allegedly held 20 GB of stolen data, including source code, credentials, and employee records, which was leaked online for free.
Capgemini did not respond to BleepingComputer’s request for comment at that time.
Earlier this year, Dell was also hit by a breach where a company API was exploited to steal 49 million customer records.
Source: BleepingComputer, Bill Toulas
