Dell said human error was to blame for mistakes which led it to ship a number of replacement server motherboards to customers pre-loaded with spyware. The company declined to say whether it was running anti-virus software at its factory but said it had taken 16 steps to improve processes. The infection hit replacement …

COMMENTS

House rules Send corrections

This topic is closed for new posts.

Friday 23rd July 2010 10:14 GMT bilston

What chance do we stand ?

What chance do we stand if new hardware arrives pre loaded with viruses?

Also, it appears from the article that Dell is hardly being very forthcoming about how this happened.

Perhaps they need to take a leaf from Apple on how to handle P.R.

On second thoughts, perhaps not...

7 0
Friday 23rd July 2010 12:04 GMT Simon Barnes

Alien intervention ?

I'm always puzzled by "human error" which seems to imply other agencies might be involved - do they think gods or pixies might be intervening to cause errors ? Why not be honest and admit "we did it" ?

2 0
1. Saturday 24th July 2010 08:12 GMT Arctic fox
  
  Well they could always..............
  
  .............try the "shit happens" explanation and see if that runs any better!
  
  ps. Reg: Can't we have an "Evil Dell" icon?
  
  0 0
Friday 23rd July 2010 12:04 GMT Anonymous Coward

W32.Spybot.Worm infection route

W32.Spybot.Worm is a detection for a family of worms that spreads using the Kazaa file-sharing network and mIR ..

"The worm was discovered in flash storage on the motherboard during Dell testing. The malware does not reside in the firmware,"

http://en.community.dell.com/support-forums/servers/f/956/t/19339458.aspx

1 0
Friday 23rd July 2010 12:23 GMT Anonymous Coward

AFAIK

w32.Spybot is a P2P downloads-associated virus - was that some sort of new modification of it in the firmware? Any explanation from Dell on this?

0 1
Friday 23rd July 2010 12:23 GMT Dan Price

The motherboard?

How can a virus infect a motherboard?

0 0
1. Friday 23rd July 2010 15:11 GMT Smokey Joe
  
  How?
  
  "How can a virus infect a motherboard?"
  
  Firmware.
  
  1 1
  1. Monday 26th July 2010 21:31 GMT Framitz
    
    Not Firmware
    
    Not firmware, but flash memory on the motherboard.
    
    0 0
This post has been deleted by its author
Friday 23rd July 2010 12:57 GMT pikey

blames Humans?

Thank god for that, is it me only who would be worried if it was the robots who placed it there? :)

3 0
1. Monday 26th July 2010 21:36 GMT Blain Hamon
  
  Of course it was the robots!
  
  What do you think we've got the Terminator icon for? Skynet must have started on a PowerEdge server.
  
  Hold on. If Arnold was a T100, and the liquid metal one was a T1000, what, exactly is the T410?
  
  0 0
Friday 23rd July 2010 13:05 GMT Tigra 07

love it!

"He said the spyware would only infect people running unpatched versions of Windows without any anti-virus software - so that's presumably what Dell factories run on."

Quote of the year, love it!

2 0
1. Friday 23rd July 2010 15:44 GMT Tom 13
  
  Actually, it could be some git
  
  borrowed the USB drive that normally sits on the automated system recording device to move some music files on his personal laptop, then put it back in the system. The automated system, being standalone and only used to burn the data to the flash drive as part of the refurb process wouldn't even need to be running Windows. Could be a linux or BSD device that copies the data from the drive to the USB to the flash. In the air gap case it certainly shouldn't need AV since the USBs should be scanned before being inserted into the device.
  
  Of course, it could also be a Windows system since Dell probably gets them almost free from MS. But it wouldn't have to be.
  
  0 3
2. Sunday 25th July 2010 08:47 GMT Tim Roberts 1
  
  ....spyware would only infect people .....
  
  and I thought it was a software virus - am I at risk now?
  
  1 0
Friday 23rd July 2010 23:49 GMT Johnny Canuck

I know

"He said the spyware would only infect people running unpatched versions of Windows without any anti-virus software."

You mean like right after you just installed windows?

4 0
1. Monday 26th July 2010 10:45 GMT Wallyb132
  
  presumably...
  
  presumably, since these were replacement motherboards, thus being installed in established systems, the spyware really should've had no effect on anything, since every IT admin worldwide is a knowledgeable and responsible individual and would never run a windows system without malware protection...
  
  0 0
Friday 23rd July 2010 23:50 GMT Anonymous Coward

Human Error

Surprise, surprise!

Did anybody think it would be divine intervention?

0 0
Friday 23rd July 2010 23:56 GMT Anonymous Coward

Beware the BIOS rootkits..

You think its bad now, just wait until people find out that several of these boards made their way into SCADA systems.

Maybe the whole 2012 thing is actually a variant of the Y2K bug, but with an embedded BIOS worm with a date trigger of 21st December 2012.. imagine the chaos when 100M windows machines nuke their hard disk firmwares on the stroke of midnight.

AC, because there won't be any on 21-12-2012....

0 0
Saturday 24th July 2010 11:39 GMT Anonymous Coward

LOL

He said the spyware would only infect people running unpatched versions of Windows without any anti-virus software - so that's presumably what Dell factories run on.

LOL. Good one. Major cuss. Love the Reg incisive commentary. True, straight to the point and funny with it.

0 0
Saturday 24th July 2010 12:20 GMT D. M

Why not blame the users?

Just like Apple did. If Apple can get away from it, then everyone else should.

0 1
1. Sunday 25th July 2010 08:45 GMT Antidisestablishmentarianist
  
  The lamest...
  
  ...Apple tie in of the week.
  
  Please try harder.
  
  0 0
Monday 26th July 2010 11:27 GMT Anonymous Coward

Dell shipping Spyware?

You mean, as opposed to the stuff they normally install that opens backdoors to Dell even whilst your machine is shut down? AC because - well, what's the point? They already have me...

0 1
Monday 26th July 2010 21:36 GMT Jared Vanderbilt

The Dell factories are fine, this happened in a remanufacturing shop.

Dell contracts most of this work out. These contractors strip the good parts off of warranty returns. The motherboard bios is brought up to date if necessary. The virus found its way into a bios binary on one or more of the updater systems.

Still an unforgivable sin, but rest assured quality control is much tighter at Dell's factories.

0 0
Monday 26th July 2010 21:48 GMT Andy 58

Duh(!)

Of course it's human error. Ultimately... everything can be tracked to human error. Corporate statements and those of politician's sound increasingly the same... much bloat, little content.

0 0