CyberSecurityBoard
Sponsor Register Login

Dell confirms breach of test lab platform by World Leaks extortion group

Yutaka Sejiyama, a threat researcher at Macnica, told BleepingComputer that 10 out of the 46 companies posted on World Leaks' data leak site had been using an SMA 100. World Leaks stole data from the environment during the attack, but BleepingComputer has learned that this data is believed to be synthetic test data used in product demonstrations and trials. "Data used in the solution center is primarily synthetic (fake) data, publicly available datasets used solely for product demonstration purposes or Dell scripts, systems data, non-sensitive information and testing outputs. The Dell Customer Solution Centers are partitioned from the rest of Dell's customer-facing network and internal systems, with customers shown multiple warnings not to upload private data to the labs. "A threat actor recently gained access to our Solution Center, an environment designed to demonstrate our products and test proofs-of-concept for Dell's commercial customers," Dell told BleepingComputer. A newly rebranded extortion gang known as "World Leaks" breached one of Dell's product demonstration platforms earlier this month and is now trying to extort the company into paying a ransom. Dell acknowledged the incident to BleepingComputer, confirming that the threat actor had breached its Customer Solution Centers platform, which is used to demonstrate Dell products and solutions to customers. World Leaks is a rebrand of the Hunters International ransomware, which shifted its focus away from file encryption toward pure data extortion. While the threat actors likely believe it contains valuable data, as it includes sample medical data and financial information, this data is reportedly entirely fabricated. Instead, the threat actors now focus on stealing data in extortion attacks, utilizing a custom-made data exfiltration tool. Since its launch, World Leaks has published data from 49 organizations on its data leak site. World Leaks affiliates are also linked to the recent exploitation of end-of-life SonicWall SMA 100 devices, where threat actors installed a custom OVERSTEP rootkit. BleepingComputer asked Dell how the company was breached, but was told it would not share this information as the breach is still under investigation. BleepingComputer has learned that the only legitimate data stolen in the attack is a very outdated contact list.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Mon, 21 Jul 2025 11:35:14 +0000


Cyber News related to Dell confirms breach of test lab platform by World Leaks extortion group

Dell confirms breach of test lab platform by World Leaks extortion group - Yutaka Sejiyama, a threat researcher at Macnica, told BleepingComputer that 10 out of the 46 companies posted on World Leaks' data leak site had been using an SMA 100. World Leaks stole data from the environment during the attack, but ...
2 months ago Bleepingcomputer.com Hunters
Dell Data Breach - Test Lab Platform Hacked by World Leaks Group - Dell maintains strict network segmentation protocols, operating independently from Dell’s production networks, customer data repositories, and partner systems. Dell’s security team continues investigating the breach vectors while ...
2 months ago Cybersecuritynews.com Hunters
Data Breach Response: A Step-by-Step Guide - In today's interconnected world, organizations must be prepared to respond swiftly and effectively in the face of a data breach. To navigate these challenges, a well-defined and comprehensive data breach response plan is essential. Let's explore the ...
1 year ago Securityzap.com
CVE-2022-50280 - In the Linux kernel, the following vulnerability has been resolved: ...
3 weeks ago
CVE-2018-1183 - In Dell EMC Unisphere for VMAX Virtual Appliance versions prior to 8.4.0.8, Dell EMC Solutions Enabler Virtual Appliance versions prior to 8.4.0.8, Dell EMC VASA Provider Virtual Appliance versions prior to 8.4.0.512, Dell EMC SMIS versions prior to ...
7 years ago
Tech Security Year in Review - In this Tech Security Year in Review for 2023, let's look into the top data breaches of the past year. Each factor contributes to the growing threatscape, demanding a proactive and adaptable cybersecurity approach to safeguard your organization ...
1 year ago Securityboulevard.com
Largest non-bank lender in Australia warns of a data breach - Firstmac Limited is warning customers that it suffered a data breach a day after the new Embargo cyber-extortion group leaked over 500GB of data allegedly stolen from the firm. Firstmac is a significant player in Australia's financial services ...
1 year ago Bleepingcomputer.com
DP World confirms data stolen in cyberattack, no ransomware used - International logistics giant DP World has confirmed that data was stolen during a cyber attack that disrupted its operations in Australia earlier this month. The company says no ransomware payloads or encryption was used in the attack. On November ...
1 year ago Bleepingcomputer.com
Ticketmaster sends notifications about recent massive data breach - Ticketmaster has started to notify customers who were impacted by a data breach after hackers stole the company's Snowflake database, containing the data of millions of people. Last month, a threat actor known as ShinyHunters began selling stolen ...
1 year ago Bleepingcomputer.com Hunters
Key Group uses leaked builders of ransomware and wipers | Securelist - The first discovered sample of Key Group, the Xorist ransomware, established persistence in the system by changing file extension associations. The .huis_bn extension added to encrypted files in the early versions of Key Group samples, Xorist and ...
1 year ago Securelist.com
Dell warns of data breach, 49 million customers allegedly affected - Dell is warning customers of a data breach after a threat actor claimed to have stolen information for approximately 49 million customers. The computer maker began emailing data breach notifications to customers yesterday, stating that a Dell portal ...
1 year ago Bleepingcomputer.com
Dell Data Breach Exposes Personal Information Of 49 Million - Personal details such as names and residential addresses were compromised in the breach, while sensitive financial information remained secure. Dell, the renowned computer manufacturer, has issued a cautionary notice to its customers regarding a ...
1 year ago Cysecurity.news
Christie's confirms breach after RansomHub threatens to leak data - Christie's confirmed that it suffered a security incident earlier this month after the RansomHub extortion gang claimed responsibility and threatened to leak stolen data. Christie's is a prominent auction house with a history spanning 2.5 centuries. ...
1 year ago Bleepingcomputer.com Ransomhub
Welltok data breach exposes data of 8.5 million US patients - Healthcare SaaS provider Welltok is warning that a data breach exposed the personal data of nearly 8.5 million patients in the U.S. after a file transfer program used by the company was hacked in a data theft attack. Welltok works with health service ...
1 year ago Bleepingcomputer.com
U.S. nuclear research lab data breach impacts 45,000 people - The Idaho National Laboratory confirmed that attackers stole the personal information of more than 45,000 individuals after breaching its cloud-based Oracle HCM HR management platform last month. INL is one of 17 U.S. Department of Energy's national ...
1 year ago Bleepingcomputer.com Siegedsec
How AI is revolutionizing "shift left" testing in API security - Catching coding errors in API preproduction, before they are spun up and go live is critical in preventing exploitable vulnerabilities. For developers who are not security experts, fixing code or knowing business logic abuse possibilities can be ...
1 year ago Helpnetsecurity.com
Hacktivists breach U.S. nuclear research lab, steal employee data - The Idaho National Laboratory confirms they suffered a cyberattack after 'SiegedSec' hacktivists leaked stolen human resources data online. INL is a nuclear research center run by the U.S. Department of Energy that employs 5,700 specialists in atomic ...
1 year ago Bleepingcomputer.com Siegedsec
Dell API Abused to Steal 49 Million Customer Records in Data Breach - The threat actor responsible for the recent Dell data breach stated that he scraped information from 49 million customer records via a partner portal API that he accessed as a phony organization. Dell had begun sending alerts to customers informing ...
1 year ago Cysecurity.news
PurpleLab - A Free Cybersecurity Lab for Security Teams To Analyse Cyber Threats - PurpleLab is a cybersecurity lab that integrates various tools and technologies to support analysts in testing detection rules and simulating real-world cyber threats. In a significant step forward for cybersecurity professionals, PurpleLab offers an ...
7 months ago Cybersecuritynews.com
Delta Dental says data breach exposed info of 7 million people - Delta Dental of California is warning almost seven million patients that they suffered a data breach after personal data was exposed in a MOVEit Transfer software breach. Delta Dental is a dental insurance provider that covers 85 million people ...
1 year ago Bleepingcomputer.com CVE-2023-34362
Delta Dental of California data breach exposed info of 7 million people - Delta Dental of California and its affiliates are warning almost seven million patients that they suffered a data breach after personal data was exposed in a MOVEit Transfer software breach. Delta Dental of California is a dental insurance provider ...
1 year ago Bleepingcomputer.com CVE-2023-34362
Auto parts giant AutoZone warns of MOVEit data breach - AutoZone is warning tens of thousands of its customers that it suffered a data breach as part of the Clop MOVEit file transfer attacks. AutoZone is the leading retailer and distributor of automotive spare parts and accessories in the U.S., operating ...
1 year ago Bleepingcomputer.com
Ticketmaster confirms data breach impacting 560 million customers - MUST READ. Ticketmaster confirms data breach impacting 560 million customers. ABN Amro discloses data breach following an attack on a third-party provider. Christie disclosed a data breach after a RansomHub attack. OmniVision disclosed a data breach ...
1 year ago Securityaffairs.com CVE-2020-3259 BianLian Cactus Ransomhub
CVE-2022-48895 - In the Linux kernel, the following vulnerability has been resolved: ...
9 months ago
ShinyHunters behind Salesforce data theft attacks at Qantas, Allianz Life, and LVMH - A wave of data breaches impacting companies like Qantas, Allianz Life, LVMH, and Adidas has been linked to the ShinyHunters extortion group, which has been using voice phishing attacks to steal data from Salesforce CRM instances. These breaches have ...
2 months ago Bleepingcomputer.com Hunters Scattered Spider

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)