Dell is fixing the huge security flaw that made it easy to steal user data off its PCs
Nov24
on November 24, 2015
at 5:11 am
PC maker Dell has announced a fix for a major security flaw found in computers that the company shipped this year. Some of its systems came preinstalled with a self-signed root certificate that makes it easy for attackers to exploit all affected systems. Programmer Joe Nord found that a couple of Dell laptops, including an Inspiron 5000 series model and an XPS 15, had a self-signed transport layer security credential issued by ‘eDellRoot’. Nord noted that the certificates on both systems are signed using the same private cryptographic key. That means that an attacker could extract the key using publicly available…
This story continues at The Next Web