Dell Confirms Security Breach As 1.3 TB Of Infrastructure Data Leaked Online By World Leaks

Dell Technologies has confirmed a security breach after a cybercriminal group published over a terabyte of internal data linked to the company’s infrastructure. The leak, which surfaced on Monday, July 21, 2025, includes more than 400,000 files and 1.3 terabytes of data made freely available for download.

World Leaks claimed the breach, a cybercriminal group previously known as the Hunters International ransomware gang. The group posted the stolen data on its leak site, though it remains unclear whether Dell was targeted with a ransom demand before the public release.

Dell acknowledged the incident in a statement and said the breach was limited to its Customer Solutions Center, a platform used to showcase and test products for business clients. The company emphasized that the affected environment is segregated from its core business and customer-facing systems, suggesting a contained exposure.

The leaked files include automation scripts, log files, browser profiles, system data, backups, and software packages. Dell stated that most data was synthetic, publicly available, or related to internal product testing. The company maintained that no sensitive customer or business information was exposed.

Despite these assurances, cybersecurity professionals have warned against underestimating the breach. Tj McClearin, CEO of security firm Xcape, questioned Dell’s claim that the data is largely inauthentic.

“A breach is a breach is a breach,” McClearin said. “It’s tough to say with certainty that the leaked information is entirely fake. From experience, we know test environments often contain real data, simply because it’s easier for vendors to work with under non-disclosure agreements.”

McClearin added that while paying ransoms should not be encouraged, failing to acknowledge the full scope of a breach could undermine trust and accountability. “Every endpoint is an attack surface and should be treated with the same level of protection as any production system,” he said.

Dell has not disclosed how the attackers accessed the system or when the breach occurred. The company said an investigation is ongoing and did not provide further comment.

This incident follows a string of serious data breaches involving Dell. In May 2024, the company confirmed a separate breach that compromised personal data belonging to 49 million customers, including names, addresses, and purchase details dating back to 2017. That breach exposed customers to various risks, including phishing and tech support scams.

The group behind the latest attack, World Leaks, is the rebranded identity of Hunters International, a former ransomware gang that pivoted to pure data exfiltration earlier this year. The group shifted its strategy amid growing enforcement efforts and diminishing profitability in ransomware operations. Since rebranding, World Leaks has claimed 49 breaches, including attacks on Chain IQ and Freedom Healthcare.