A second data breach at Dell has been reported within the span of a week, with hackers allegedly exposing sensitive internal files through compromised Atlassian tools. This breach is said to involve data from Jira, Jenkins, and Confluence, putting the company’s cybersecurity measures under scrutiny as it’s already investigating a prior incident.
On September 19, 2024, Hackread.com released a detailed report revealing that sensitive information from over 10,800 Dell employees was compromised in an earlier breach. The hacker responsible for that initial incident has now claimed that Dell has faced “another breach,” raising concerns about an ongoing vulnerability within the organization.
The hacker, operating under the alias “grep” on the well-known cybercrime forum Breach Forums, made these assertions on September 22, 2024. In their announcement, “grep” reported that this latest breach was facilitated in collaboration with another hacker known as “Chucky,” together managing to compromise Dell’s internal systems and exposing confidential data.
“Grep” claimed that the breach encompasses a significant volume of data—specifically, 3.5 GB of uncompressed information related to Jira files, database structures and schema migrations. Access to this sensitive data was reportedly gained by exploiting vulnerabilities in Dell’s Atlassian software suite, which encompasses tools crucial for software development and collaborative projects.
The following message was shared by the hacker on the forum: “Compromised data: Jira’s files, DB tables, schema migration, etc., totalling 3.5GB uncompressed. This time, it was breached by Chucky. Before Dell makes any claims, we both compromised your Atlassian and accessed Jenkins, Confluence, etc.
GDPR said time is ticking, by the way, xD.”
In light of the first reported breach, Dell had acknowledged the claims and initiated an investigation. However, the organization has yet to respond to these recent accusations regarding the second breach.
Investigations conducted by the Hackread.com research team have indicated that the leaked files may hold highly sensitive information concerning Dell’s internal infrastructure. This potentially includes system configurations, user credentials, security vulnerabilities, and development processes. Should these claims be validated, such information could significantly enhance the threat landscape surrounding Dell, enabling larger-scale attacks.
Further analysis of the exposed files suggests they pertain to various enterprise tools and environments utilized by Dell, including Jira, database tables, schemas, and Atlassian tools like Jenkins and Confluence. Due to security concerns, specific details of the compromised files have been withheld from public view.
Hackread.com has reached out to Dell for further commentary and will provide updates as more information becomes available.
