Items tagged with edellroot

Yesterday, we brought you the rather unfortunate news that a few models of new Dell laptops were shipping with eDellRoot, a self-signed root certificate that had its private key stored directly on the affected systems. Needless to say, this represents a rather serious security risk for customers, and is reminiscent of the Superfish debacle that plagued Lenovo earlier this year. For its part, Dell stated yesterday “that security and privacy is a top concern” for the company and that it had a “team investigating the current situation.” Thankfully for customers, Dell responded quickly and has given us a rundown on what exactly happened. And amazingly, reddit user crusoe was right on target with... Read more...
If you’re PC giant Lenovo, you’d probably like to forget all about the Superfish security debacle from earlier this year. Lenovo installed Superfish adware on its IdeaPad notebooks earlier this year complete with a self-signed HTTPS certificate. The certificate left Lenovo customers with affected machines open to man-in-the-middle attacks and put the company in front of the steady crosshairs of many security professionals and PC enthusiasts. Now it looks as though Dell has a similar problem on its hands. Over the weekend, programmer Joe Nord discovered that his newly purchased Dell Inspiron 5000 notebook featured a trusted root certificate going by the name eDellRoot. Most troubling is that eDellRoot... Read more...