Dell's Twitter Account Apologizes For The 'Inconvenience' Of Helping NSA Install Spyware

from the time-to-go-off-script dept

Tue, Dec 31st 2013 5:39am — Mike Masnick

There are times when big brands with "social media people" might want to teach those junior level employees to recognize that using one of the standard "scripted" answers might be inappropriate. Take, for example, if you're Dell and a new report has come out suggesting that the NSA has pretty much compromised your servers at the BIOS level with spy bugs, then, when someone -- especially a respected security guy like Martin Wismeijer -- tweets at you, you don't go with the standard scripted "sorry for the inconvenience" response. But, apparently, that's not how Dell handled things this time (thanks to Mike Mozart for the pointer):

In case you can't read that, Wismeijer complained on Twitter about finding out that his Dell server is bugged by the NSA (which might be an exaggeration...) and included the @DellCares account in his tweet. That account wrote:

Thank you for reaching out and regret the inconvenience. Our colleagues at @dellcarespro will be able to help you out.

Wismeijer responded with an expected level of anger. Not only is "regret the inconvenience" probably the inappropriate response to a customer complaining about the NSA installing malware, but the idea that Dell support "will be able to help you out" is similarly questionable.

Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.

Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.

While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.

–The Techdirt Team

Filed Under: dell cares, martin wismeijer, nsa, social media, spyware, surveillance
Companies: dell

54 Comments

If you liked this post, you may also be interested in...

Reader Comments

Subscribe: RSS

View by: Time | Thread

TheResidentSkeptic (profile), 31 Dec 2013 @ 5:39am

You missed a fine point, and need a translation..
"dellcares" does NOT care. Duh.

"dellcaresPRO" does care, and can help.

Translation: NSA paid us $50 to put it in; pay our PRO service $250 and they will take it out.
[ link to this | view in chronology ]
- JeffR, 31 Dec 2013 @ 7:25am
  
  Re: You missed a fine point, and need a translation..
  More accurately, pay their PRO service $250 and they will tell you they took it out... but it'll still be there.
  [ link to this | view in chronology ]
  - That One Guy (profile), 31 Dec 2013 @ 8:07am
    
    Re: Re: You missed a fine point, and need a translation..
    To be even more accurate, they'll take your money, tell you they got rid of the offending 'feature', and during the 'removal' process install even more invasive programs/code, as obviously the only person who would ever object to such spying is someone up to no good. /s
    [ link to this | view in chronology ]
    - DannyB (profile), 2 Jan 2014 @ 9:36am
      
      Re: Re: Re: You missed a fine point, and need a translation..
      they'll take your money, tell you they got rid of the offending 'feature', and during the 'removal' process install even more invasive programs
      You make that sound bad, but it is standard industry practice, called an 'upgrade'. :-)
      
      If the improved spyware does not perform to your satisfaction, please return it to your local NSA for repair.
      [ link to this | view in chronology ]
Anonymous Coward, 31 Dec 2013 @ 6:31am

sidenote
Can you acquire the skillz of embedding actual tweets mike ?

Screenshots are good backup but the embedded tweet would be nice. Am sure it's not that hard to do. IDK though.
[ link to this | view in chronology ]
- Anonymous Coward, 31 Dec 2013 @ 6:56am
  
  Re: sidenote
  How long are tweets like that likely to remain up? For stories like this, a screen shot is best as the screen shot will still be here next week, or year.
  [ link to this | view in chronology ]
- anonymouse, 31 Dec 2013 @ 9:57am
  
  Re: sidenote
  You need to sort out your device that you are viewing the articles on, i have a basic pc with standard firefox and i see this twitter screenshot with no problem,just tried on my windows8 phone and i also see it. maybe it is your device blocking images or configured not to allow images to be viewed, Mike has done his job and embedded the screenshot it is not his fault you do not know how to use the technology you have purchased be it a phone or tablet or watch or even your tv all which have setting that should not be touched unless you have a problem like you are having, then you need to go and look at your settings and look for on that block or does not download images that are embedded, if a standard firefox browser like i am using can display the image you have the problem not Mike...
  [ link to this | view in chronology ]
- Anonymous Coward, 31 Dec 2013 @ 9:29pm
  
  Re: sidenote
  People erase shit, images last longer
  [ link to this | view in chronology ]
Pramod, 31 Dec 2013 @ 6:35am

It would be interesting to see Michael Dell's reaction on this story !
[ link to this | view in chronology ]
Anonymous Coward, 31 Dec 2013 @ 6:51am

so what was going to happen then? was permission going to be asked for to remove the NSA 'bug' and when told 'NO' would lie again to the customer?
DELL and Twitter should now suffer the consequences and the best way for that to happen is a complete ban on the purchasing and use of the products! the only way any of the companies that have gone down the road of pissing on customers in favour of aiding the NSA and probably other security agencies, is to hit them as hard as possible in the pocket!
[ link to this | view in chronology ]
Anonymous Coward, 31 Dec 2013 @ 6:55am

At least they named their firewall line appropriately! http://www.sonicwall.com/us/en/products/NSA-Series.html
[ link to this | view in chronology ]
- weneedhelp (profile), 2 Jan 2014 @ 11:43am
  
  Re:
  R... O... F... L. No they didnt. Ha ha ha... now that's funny. Unintentional... but funny as hell... The NSA series.
  [ link to this | view in chronology ]
KoD (profile), 31 Dec 2013 @ 7:24am

Maybe this is wrong, but that looks like a bot response to me, not a person reading a script. Like the email you get from most customer service centers acknowledging that they have received your correspondence.
[ link to this | view in chronology ]
- Brazenly Anonymous, 31 Dec 2013 @ 9:12am
  
  Re:
  Taking a look through the list of their recent tweets, it doesn't look like they have a bot monitoring the account (scripted responses with no special characters and differing typos). However, they may have opted to move to a different strategy based on this incident.
  [ link to this | view in chronology ]
- That One Guy (profile), 31 Dec 2013 @ 9:16am
  
  Re:
  Whether it was a bot or not, they'll probably try to pass it off as a response from one, though that would seem to be just swapping one problem with another.
  [ link to this | view in chronology ]
- anonymouse, 31 Dec 2013 @ 9:51am
  
  Re:
  This story is nonsenses yes the dell twitter personnel should not have a bot answering posts but have real people deciding whether it is wise to actually even acknowledge the post.
  
  This is a non story where a bot advised the twitter universe to contact support to discuss the matter no more.
  
  Must be a very slow news week to have to post this as a story.
  [ link to this | view in chronology ]
- Anonymous Coward, 31 Dec 2013 @ 12:27pm
  
  Fixed that for you.
  ...acknowledging that they have received your correspondence
  
  ...acknowledging that they have received and ignored your correspondence
  [ link to this | view in chronology ]
  - KoD (profile), 31 Dec 2013 @ 1:05pm
    
    Re: Fixed that for you.
    Thank you, sir.
    
    That is maddening, especially when you email a software company about a bug that is hindering your use of their software and all you ever get back is that autoreply garbage... I have purchased paid versions of apps simply because of the great customer support. Ti Backup is an excellent example of this. Prompt response = I pay them money.
    [ link to this | view in chronology ]
- DannyB (profile), 2 Jan 2014 @ 9:38am
  
  Re:
  
  Maybe this is wrong, but that looks like a bot response to me, not a person reading a script.
  Um, excuse me, but a 'bot' is what you call a Dell customer service droid.
  [ link to this | view in chronology ]
Guess Who, 31 Dec 2013 @ 7:44am

DellCares Twitter is a very specific Help account
If you actually go to the @DellCares Twitter http://www.twitter.com/DellCares they give very tailored responses to the @DellCares Tweets! It wasn't an auto-response!
[ link to this | view in chronology ]
Guess Who, 31 Dec 2013 @ 7:46am

Plot Twist: That Guy is in Amsterdam Holland
That NSA Bios Bug was found in a Server bought from the USA and shipped to Amsterdam Holland! No tapping for economic reasons huh?
[ link to this | view in chronology ]
streetlight (profile), 31 Dec 2013 @ 7:48am

Who will buy used Dell servers?
[ link to this | view in chronology ]
streetlight (profile), 31 Dec 2013 @ 7:54am

Who will buy used Dell servers?
Those Dell servers in use are now worthless - no one's going to buy them. Trust Dell in the pay of NSA to remove the offending malware, I don't think so. What about folks accessing those servers on the public Internet? Dell's been on the precipice for sometime and this may destroy their server business and cause them to fall over that cliff. I love my Dell laptop, but probably won't be getting another one any time soon. Good bye, Dell.
[ link to this | view in chronology ]
- KoD (profile), 31 Dec 2013 @ 8:04am
  
  Re: Who will buy used Dell servers?
  I had previously enjoyed owning a Dell laptop as well, but that is over now. Dell used to be on my short list of acceptable preassembled computers. HP has horrible customer service ("Would you like to pay $50 for me to read you the troubleshooting section from the manual we should have included with your device?"), Toshiba's always seemed to burnout too early, but Dell always seemed to stand up to my abuses...
  
  But seriously, this has to be a knife to Dell's jugular (much like the one in the backs of their customers...). Can there be a less forgiveable crime in the netsec industry? You label your product as a antidote when really it is a poison. To me, this means game over for Dell. Smfh...
  [ link to this | view in chronology ]
- Anonymous Coward, 31 Dec 2013 @ 8:24am
  
  Re: Who will buy used Dell servers?
  There are a lot of tech companies who are going to pay for their treason. They are also committing a dreadfully common cardinal sin in business: forgetting that the real boss is always your customers.
  
  Hopefully we'll see a lot of corporations die and leave a heavy legacy of dread amongst the business world. Even in the myopic short-term corporate world, all one will have to do to make them think twice about selling out their customers is whisper a name like "Dell", "Microsoft", or any other of the fallen titans condemned to Tartarus.
  [ link to this | view in chronology ]
Me, 31 Dec 2013 @ 8:10am

I agree about the harm to Dell's business. I'm on my 4th or 5th Dell laptop through the years, but the next one won't be Dell. Life's too short to patronize businesses that don't care about their customers.
[ link to this | view in chronology ]
- KoD (profile), 31 Dec 2013 @ 11:45am
  
  Re:
  NAFTA has ISDS provisions, does it not? Wouldn't it be rather amusing if all of the tech companies went after the federal government for robbing them of billions of USD? Maybe it could be arranged that the NSA budget actually has to pay whatever sum is awarded to the companies. Is that like fighting evil with evil?
  [ link to this | view in chronology ]
Anonymous Coward, 31 Dec 2013 @ 8:11am

So - is it a crime to remove said "bugs" ?
[ link to this | view in chronology ]
- Anonymous Coward, 31 Dec 2013 @ 8:18am
  
  Re:
  Its a crime to compromise computer networks.
  
  Installation of the bugs is the crime that needs prosecuted.
  [ link to this | view in chronology ]
  - Anonymous Coward, 31 Dec 2013 @ 8:53am
    
    Re: Re:
    "Installation of the bugs is the crime that needs prosecuted."
    
    The government tends not to prosecute itself very often.
    [ link to this | view in chronology ]
    - Anonymous, 31 Dec 2013 @ 2:51pm
      
      Re: Re: Re:
      Which is why it's up to we the people to take matters into our own hands.
      [ link to this | view in chronology ]
- Mr. Applegate, 31 Dec 2013 @ 9:19am
  
  Re:
  It is a crime to 'reverse engineer' to even look for the bugs (assuming it is encrypted in any way). So how can you even find firmware that you know is not compromised? You can't without breaking the law, even then it will take very knowledgeable people a long time to determine if your firmware is bug free. Even longer if you need to re-write it yourself.
  [ link to this | view in chronology ]
  - anonymouse, 31 Dec 2013 @ 10:19am
    
    Re: Re:
    Some laws are made to be broken.And there is no law that prevents you protecting your privacy or hacking into your own purchased equipment no matter what anyone say's.
    [ link to this | view in chronology ]
  - John Fenderson (profile), 31 Dec 2013 @ 11:17am
    
    Re: Re:
    It is a crime to 'reverse engineer' to even look for the bugs (assuming it is encrypted in any way)
    
    Technically not so. It may be a crime to bypass the encryption (depending), but it's not a crime to reverse engineer. Sorry, the pedant in me just had to point this out.
    [ link to this | view in chronology ]
    - Mr. Applegate, 3 Jan 2014 @ 5:52am
      
      Re: Re: Re:
      It is my understanding that the only legal way to reverse engineer under DMCA is "For Inter-operability between software components." and that any other use would be illegal.
      
      http://www.gpo.gov/fdsys/pkg/PLAW-105publ304/pdf/PLAW-105publ304.pdf
      
      "(f ) REVERSE ENGINEERING.�(1) Notwithstanding the provisions of subsection (a)(1)(A), a person who has lawfully obtained the right to use a copy of a computer program may circumvent a technological measure that effectively controls access to a particular portion of that program for the sole purpose of identifying and analyzing those elements of the program that are necessary to achieve interoperability of an independently created computer program with other programs, and that have not previously been 112 STAT. 2867PUBLIC LAW 105�304�OCT. 28, 1998 readily available to the person engaging in the circumvention, to
      the extent any such acts of identification and analysis do not constitute infringement under this title."
      Is that understanding incorrect, or has it been superseded?
      [ link to this | view in chronology ]
Anonymous Coward, 31 Dec 2013 @ 8:57am

Open BIOS?
I wonder if this will make people finally start to consider the value of open BIOS's.
[ link to this | view in chronology ]
- Charles (profile), 31 Dec 2013 @ 9:12am
  
  Re: Open BIOS?
  I am sure it will. The "next big thing" in computing may very well be open software and hardware.
  
  Richard Stallman, love him or hate him, is right about a lot of things concerning freedom and privacy, especially related to computing.
  [ link to this | view in chronology ]
  - Anonymous Coward, 31 Dec 2013 @ 10:44am
    
    Re: Re: Open BIOS?
    Stallman always seems like a wild-eyed lunatic.
    
    Then ten years go by.
    
    And then Stallman seems far too conservative.
    [ link to this | view in chronology ]
Anonymous, 31 Dec 2013 @ 2:50pm

First their pitchman gets busted for drugs, and now this.
[ link to this | view in chronology ]
- DannyB (profile), 2 Jan 2014 @ 9:39am
  
  Re:
  The Dell dude busted for pot? I thought pot was a Gateway drug.
  [ link to this | view in chronology ]
  - btrussell (profile), 3 Jan 2014 @ 6:16am
    
    Re: Re:
    There is a gateway in dells' according to this article.
    [ link to this | view in chronology ]
Wangler Glowforth, 31 Dec 2013 @ 3:09pm

What Fuckin' Moron Buys Dell?
Buy crap get crap.
[ link to this | view in chronology ]
Anonymous Coward, 31 Dec 2013 @ 3:18pm

I don't think Dell cares about their customer's problems or concerns. The "canned" auto-response from Dell's customer support, seems to add weight to this theory.
[ link to this | view in chronology ]
Jeff Kennedy, 31 Dec 2013 @ 8:01pm

What do you expect?
So you reach out to a Social Media person on Twitter about an alleged NSA spy bug on your computer - what kind of response did you f**king expect?!?!

"Oh, sorry about that Sir, we've forwarded this concern on to the Police, FBI, CIA and N......" F**king morons.

Or, how about another response in 160 characters or less... "Dell takes customer privacy and security very seriously, we can confirm that these claims are not true" or some other corporate spin. F**k!!!
[ link to this | view in chronology ]
Anonymous Coward, 1 Jan 2014 @ 6:16am

LUA
The least Dell could have done in this case is provide their customer with the Least Untruthful Answer.
[ link to this | view in chronology ]
Abhishek kumar jha, 1 Jan 2014 @ 10:10am

The twitter account was being handled by some social media marketer
[ link to this | view in chronology ]
fwara, 2 Jan 2014 @ 10:34am

geaga
Sue them.
[ link to this | view in chronology ]
RubyPanther, 3 Jan 2014 @ 11:00am

Not Sure
Reading the tweet a few more times, I'm less and less sure what the droid really meant. Less than 500 words, what can you really say? "Thank you for reaching out and regret the inconvenience [to us in having to deal with governmental BS]. Our colleagues at @dellcarespro will be able to help you out [in whatever way they can that you agree to, such as selling a replacement BIOS of a different version.]"

I think it just... came out wrong in the shortening. It is kindof a tossup which wtf these bottom tier droids blow up with. But they didn't actually say explicitly who is being inconvenienced, only that the information provided by the person was a source of some inconvenience of a regrettable nature.
[ link to this | view in chronology ]
Anonymous Coward, 4 Jan 2014 @ 9:43am

NSA out of control.
[ link to this | view in chronology ]
BillatDell (profile), 6 Jan 2014 @ 7:04am

Dell's response
We have posted an official response to the concerns expressed about this issue.
http://en.community.dell.com/dell-blogs/direct2dell/b/direct2dell/archive/2013/12/30/comment-on-der- spiegel-article-regarding-nsa-tao-organization.aspx
"Dell is aware of a story originally reported by Der Spiegel, which has subsequently been picked up in other media outlets, that refers to alleged security �backdoors� implanted by the United States National Security Agency into products from several technology companies, including Dell.

Dell has a long-standing commitment to design, build and ship secure products and quickly address instances when issues are discovered. Our highest priority is the protection of customer data and information, which is reflected in our robust and comprehensive privacy and information security program and policies. We take very seriously any issues that may impact the integrity of our products or customer security and privacy. Should we become aware of a possible vulnerability in any of Dell�s products we will communicate with our customers in a transparent manner as we have done in the past.

Dell does not work with any government � United States or otherwise � to compromise our products to make them potentially vulnerable for exploit. This includes �software implants� or so-called �backdoors� for any purpose whatsoever."
[ link to this | view in chronology ]
mack, 31 Jan 2014 @ 3:16pm

great!!
that's pretty cool ^^ .
[ link to this | view in chronology ]
Sean, 12 Jan 2017 @ 3:46pm

This is a crime
Thanks Dell for admitting to putting it there. This is a crime that you have committed. You knowingly assisted the NSA to commit a crime that you are also complicit in and cannot actually blame the criminals at the NSA who perpetrated this against the American people because you knew, or should have known, it was a crime when you did it.

I'm thinking a massive class action civil case that we can bankrupt Dell with. They are a terrible company to do business with. The way they treated my mother just before she died was atrocious.

Took all her money for a computer that, even being a 20 year advanced tech, I was unable to find anyone on Dell's "phone support" that either knew what to do, cared about fixing the problem, or was not otherwise obvious in their disinterest in my mother having a pc to use. I was lied to over and over, abused by contentious support people, and left to figure it out without any tech support from them. Just political bullshit and pretending to care by transferring over and over to equally stupid people. Never again Dell. Never never never.

Multiple agents telling same lies in same order proves they train them to lie.

The crime is one that is not only punishable by quite a few years in prison for a maximum sentence and per occurrence, it is one that our new Attorney General will be happy to help you with. Good riddance DELL for helping NSA spying on US citizens. You didn't report the crime but cooperated with it and the directors of Dell need to see a prison cell for many years.

Thanks Edward Snowden for outing these bastards and for their boldness in admitting their crimes as though they are above the law. It will be interesting to see how this plays out as we have a new sheriff in town in a few days.
[ link to this | view in chronology ]
Marioon, 10 Jun 2017 @ 8:46am

It would be interesting to see Michael Dell's reaction on this story
[ link to this | view in chronology ]
Ajit, 23 Jun 2017 @ 4:17am

I'm thinking a massive class action civil case that we can bankrupt Dell with. They are a terrible company to do business with. The way they treated my mother just before she died was atrocious.
[ link to this | view in chronology ]