Dell.com reset its accounts five days after a cyberattack to steal user data was discovered.
Dell released a statement saying that on December 9 the company detected and stopped hackers that violated its network and attempted to extract customer data. The company found no conclusive evidence that hackers were successful, although it does not rule out the possibility that some data might have been stolen.
Said data include client names, email addresses and hashed passwords. The company did confirm that credit card information and Social Security numbers were not stolen. Upon detection, Dell implemented countermeasures and began an investigation. It also retained a digital forensics firm to conduct an independent investigation to comply with current laws.
Dell did not reveal the number of accounts that were affected, the nature of the attack or something that might let us know who did it. The company emphasizes that no sensitive data was stolen and that it has everything under control. Resetting passwords has been done as a measure to “limit the impact of any potential exposure.”
The attack has been carried out during a time when most global regulators are working hard to make companies come up with quick and precise information regarding customer data theft. In May, The EU adopted the GDPR, a set of new and strict privacy regulations. This is the EU’s new data protection law, which can impose fines of up to 4% of a company’s worldwide annual revenue.