Dell PowerEdge R410 motherboard contains malware embedded into systems management firmware

After supplying "faulty motherboard," here's another incident from Dell, this time, the company has supplied "R410 motherboard with malware-infected firmware" to customers. According to Dell itself, the infection affects only a "small number" motherboards, which were sent via Dell's service and replacement process for four servers: PowerEdge R310, PowerEdge R410, PowerEdge R510 and PowerEdge T410. […]

After supplying "faulty motherboard," here's another incident from Dell, this time, the company has supplied "R410 motherboard with malware-infected firmware" to customers. According to Dell itself, the infection affects only a "small number" motherboards, which were sent via Dell's service and replacement process for four servers: PowerEdge R310, PowerEdge R410, PowerEdge R510 and PowerEdge T410. The maximum potential exposure is less than 1% of these server models."

The W32.Spybot worm was discovered in flash storage on the motherboard during Dell testing. The malware doesn't reside in the firmware. "To date we have received no customer reports related to data security," a Dell representative said . "Systems running non-Windows operating systems are not vulnerable to this malware and this issue is not present on motherboards shipped new with PowerEdge systems."

>[Source]