FYI, just received this yesterday, it's dated July 22, most probably already know, but I wanted to share it anyway...
Actual US-CERT noticed attached.
"US-CERT Advisory-10-203-01: Dell Server Motherboards Shipped with Malware
July 22, 2010
OVERVIEW
Dell acknowledged that some replacement motherboards for PowerEdge Servers were shipped to customers with malicious code stored on the flash memory.
DETAILS
According to Dell, PowerEdge systems shipped from the Dell factory are not affected. This issue affects a limited number of replacement motherboards for the following models:
1. PowerEdge R310
2. PowerEdge R410
3. PowerEdge R510
4. PowerEdge T410
The malware is identified as W32.Spybot.Worm according to Symantec definitions.1 Antivirus programs with current definitions can identify this malware, which only affects Microsoft Windows operating systems. According to Dell, systems with iDRAC Express or iDRAC Enterprise card installed cannot be affected. Systems can only be exposed if customers run an update to Unified Server Configurator (USC) or 32-bit Diagnostics.2
RECOMMENDATIONS
US-CERT recommends organizations pursue the following actions:
Review the information contained in the Dell Support Forum: http:/
Refrain from updating to USC or 32-bit Diagnostics on affected systems until the issue has been resolved
Maintain up-to-date antivirus program definitions
Report incidents to US-CERT:
E-mail: soc@us-cert.gov
Voice: 1-888-282-0870
Incident Reporting Form: https://forms.us-cert.gov/report/ "