![\"\"](\"http:\/\/thundercloud.net\/infoave\/images\/2016\/pharmer.png\")
The Pharmer in the Dell: Redux<\/h1>\nThe Pharmer in the Dell: Redux<\/h1>\nTen years ago, in 2005, Dell tried sneaking malware\/PUPs onto their computers and we wrote it up and called them out<\/span>.<\/a>\u00a0In 2012 we republished the article<\/a> <\/span>( with some changes ) because Dell again tried to trick consumers into purchasing computers with pre-installed malware and\/or PUPs.<\/p>\n Well, the more things change, the more they stay the same. Dell is calling “Foul!” because, they claim, they had no idea Dell certificate was very similar to the Superfish malware that Lenovo installed<\/a><\/span> on their computer a couple of years ago. Dell got caught (as did Lenovo) and are trying to walk it back.<\/p>\n Our friends at Emsisoft<\/a> <\/span>have written a great article about Dell’s faux pas and we’ve republished it (below). We found this article spot on and informative; we hope you do as well.<\/p>\n If you have recently bought a new Dell computer, it could come with a very dangerous security flaw. The flaw means that that malicious websites or software could be automatically trusted by Dell\u2019s security software. It also means you are vulnerable, when using public Wi-Fi networks, to so-called \u201dman-in-the-middle\u201d attacks.<\/p>\n Dell has acknowledged that a self-signed root certificate called eDellRoot, pre-installed on its new PCs, introduces the security vulnerability. The certificate was implemented as part of a support tool and intended to make it faster and easier for its customers to service their system. However, being a \u201cself-signed\u201d certificate, eDellRoot enables attackers to intercept traffic from an affected Dell laptop and any HTTPS-enabled website. The hacker can then act as proxy between the laptop and the website by re-encrypting the traffic with a rogue certificate that\u2019s signed with the eDellRoot private key.<\/p>\n It\u2019s not yet clear how many models are affected, although users have reported finding it on Dell XPS 15 and XPS 13 models, as well as a Latitude and an Inspiron 5000 series model.<\/p>\n Dell is now providing customers with removal instructions and says it will not add it to new devices going forward. The removal instructions can be downloaded here.<\/p>\n It is an extremely embarrassing situation for the company, which publicly criticised its competitor Lenovo in February this year when Lenova pre-installed a program called Superfish that included a self-signed root certificate.<\/p>\n As one Dell XPS 15 laptop user says, \u201cTo add insult to injury, it\u2019s not even apparent what purpose the certificate serves. At least with Superfish we knew that their rogue root CA was needed to inject ads into your web pages; the reason Dell\u2019s is there is unclear.\u201d<\/p>\n If you have recently bought a Dell computer and want to see if you are affected by this, go to Start -> type \u201ccertmgr.msc\u201d -> (accept on UAC prompt) -> Trusted Root Certification Authorities -> Certificates and check if you have an entry with the name \u201ceDellRoot\u201d.<\/p><\/blockquote>\n (Quoted article above is courtesy of Emsisoft<\/a>,<\/span> You can read the original article here<\/a><\/span>. )<\/p>\n <\/p>\n","protected":false},"excerpt":{"rendered":" The Pharmer in the Dell: Redux Ten years ago, in 2005, Dell tried sneaking malware\/PUPs onto their computers and we wrote it up and called them out.\u00a0In 2012 we republished the article ( with some changes ) because Dell again tried to trick consumers into purchasing computers with pre-installed malware and\/or PUPs. Well, the more things change, the\u2026 Read More »<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1433,1669,1656,1654,1674],"tags":[],"_links":{"self":[{"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/posts\/10404"}],"collection":[{"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/comments?post=10404"}],"version-history":[{"count":4,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/posts\/10404\/revisions"}],"predecessor-version":[{"id":10412,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/posts\/10404\/revisions\/10412"}],"wp:attachment":[{"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/media?parent=10404"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/categories?post=10404"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.thundercloud.net\/infoave\/new\/wp-json\/wp\/v2\/tags?post=10404"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}\n
Superfish reloaded: eDellRoot certificate punching a huge security hole in your new Dell computer<\/h2>\n
Dell fishing for trouble with this latest security flaw<\/h4>\n
Our Premium Weekly Newsletter is now FREE! Sign up today.<\/a><\/span><\/h3>\n\n