Earlier this week, we reported that renowned PC manufacturer, Dell had pre-loaded some of its computers with a certificate, which is self-signed by the company.
The issue is, that it poses a huge security threat as the certificate, can be ahcked by an attacker quite easily.
This in turn puts the user’s PC at great risk, as any connection which appears to be a secure connection, i.e., encrypted, may in fact be spied upon by an attacker. The vulnerability was spotted a programmer, whoi published his findings online. Soon after news of this spread like wildfire, and eventually reached the ears of the very company concerned, Dell.
The company has [...]
A few months ago, Chinese OEM Lenovo, was in the limelight, for a malware which came pre-installed on its computers.
This was the Superfish exploit, which put the user’s privacy at risk, because of a root certificate, signed by the company.
And now, American PC maker Dell seems to have followed in the dark footsteps of its rival. Some of Dell’s laptops have been found to come with a security exploit, much akin to Superfish.
The new exploit, which is currently unnamed, is actually a certificate hack, to be more precise one related to SSL (Secure Sockets Layer). In case you aren’t aware web browsers and other applications use the SSL [...]