Microsoft Updates to Remove Dell's Dangerous Root Certificate
Posted by: Timothy Weaver on 12/04/2015 10:55 AM
[
Comments
]
Microsoft takes a negative stand against Dell's self-signed root certificate.
Worrying that the certificate can be used to conduct a man-in-the-middle attack, Microsoft updated its certificate list to revoke its trusted status.
That was not the only action that Microsoft took. It also updated Windows Defender to remove the vulnerability.
Dell installed the "eDellRoot" certificate on support tools it bundles with its PCs, but security experts warned the certificate can be used to impersonate Dell, allowing hackers to launch attacks against vulnerable machines.
As of this writing, Microsoft said it was not aware of any attacks related to the certificate.
Source: ZDNet
Worrying that the certificate can be used to conduct a man-in-the-middle attack, Microsoft updated its certificate list to revoke its trusted status.That was not the only action that Microsoft took. It also updated Windows Defender to remove the vulnerability.
Dell installed the "eDellRoot" certificate on support tools it bundles with its PCs, but security experts warned the certificate can be used to impersonate Dell, allowing hackers to launch attacks against vulnerable machines.
As of this writing, Microsoft said it was not aware of any attacks related to the certificate.
Source: ZDNet
Comments
