China-Linked Hackers Use Dell RecoverPoint Flaw to Drop GrimBolt Malware

Dell warns of a critical security hole in its RecoverPoint software exploited by hackers. Learn how to protect your data from the CVE-2026-22769 vulnerability and the new GrimBolt malware.

A major security vulnerability has been identified in a Dell product used by many companies to protect their virtual data. According to reports from Google’s Threat Intelligence Group (GTIG) and the cybersecurity firm Mandiant, a group of hackers linked to China has been exploiting this weakness since at least mid-2024.

The problem affects Dell RecoverPoint for Virtual Machines, a tool designed to help businesses recover their data if their systems fail. As we know it, these types of tools are vital for keeping digital services running, which makes them a prime target for those looking to steal information.

What Went Wrong?

The issue, officially named CVE-2026-22769, involves hardcoded credentials. This means the software came with a built-in username and password ...