Superfish: return
Earlier this year, researchers found spyware that came with Lenovo laptops. No posts on this topic on Habré not done. For this, Lenovo paid an attack on its website.
10 hours ago the user reddit published a new report. This time the culprit was Dell. The company sells laptops with a pre-installed, self-signed root certificate.
')
This is very unpleasant. In addition to the certificate, a private key was also found, the password to which is “dell”.
This all puts the safety of users owning laptops that firms compromise. Anyone who conducts a MitM attack can intercept and modify the encrypted data.
If you own a Dell laptop, check the list of trusted certificates and certification centers.
A long discussion is here .
UPD # 1: Official Dell Replies
Life does not teach anyone
10 hours ago the user reddit published a new report. This time the culprit was Dell. The company sells laptops with a pre-installed, self-signed root certificate.
')
This is very unpleasant. In addition to the certificate, a private key was also found, the password to which is “dell”.
This all puts the safety of users owning laptops that firms compromise. Anyone who conducts a MitM attack can intercept and modify the encrypted data.
If you own a Dell laptop, check the list of trusted certificates and certification centers.
A long discussion is here .
UPD # 1: Official Dell Replies
Source: https://habr.com/ru/post/271511/
All Articles