Dell recognizes the existence of a vulnerability in the last Hawwasabha phones




Company said Del Some of portable personal computers that have shipped in recent suffer from the presence of security vulnerability that can make it easier for hackers access to users’ data.

It recognized the US personal computer maker on Monday that it had shipped with support for portable computers is inherently safe tool, and apologized for it, and provided for users to remove the affected appliance repair tool.

The Dell Computers, which recently produced the ship with a security certificate makes it easier for hackers implementation of an electronic attack of the type “man in the middle” allows steal personal information, even across encrypted communications.

Although the security certificates were not defective coincidence, Dell decided to mandate, which bore the name “Del E. Root” eDellRoot adjective her source data mode, the devices as part of a support tool.

As the security certificates are all identical and “self-signed” (in the sense that it does not verify its security is the same), it can be an attacker private key extraction and use it to formulate security certificates to other Web sites, which would accept then by Dell devices.

As a result, it can be an attacker, for example, sitting in a cafe with Wi-Fi public and intercept any details to log sent from a Computer Dell affected, or denial of a site for banking services via the Internet in order to extract more information.

And remember this vulnerability PCs Chinese company Lenovo’s decision to charge devices infected by software ad malicious “adware” Adware is known as the “Super Fish” Superfix, has also installed self-signed certificate on the computers.

Unlike Lenovo, Dell apologized quickly after the discovery certificate eDellRoot by clients and researchers.

In a leaflet on the Dell website-mail, a spokeswoman for the company said that the security certificate came as part of a support tool designed to speed up and facilitate their clients systems management task. “The security and privacy of our customers is a major concern and priority for Dell. We deeply regret the occurrence of this matter and take what it takes to be addressed. ”

Dell declined to disclose the number of computers or models affected by the security Vulnerability. But the software began to prove on portable computers in August / August, according to a company spokeswoman.

As of Tuesday, Dell will launch an update programmatically to remove defective devices from the security certificate. In the meantime, the company has published instructions help users who want to remove the certificate manually.


In: Technology & Gadgets Asked By: [15519 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »