Major security blunder Dell
- Computer manufacturer Dell has a heavy security misstep. The company has put a so-called security certificate on part of his recent computers, but in doing so has also made the corresponding encryption key.
According to Dell was the thinking behind the certificate that the company could provide better technical support. It will thereby be easier to identify the computer in question. However, in conjunction with the associated key, hackers can use the certificate to encrypt Internet traffic down to listen, or to send people to fake sites to steal login data for instance.
Dell has the flaw, discovered by researchers at security firm Duo Security, admitted and has published instructions on how to remove the certificate. It also comes with a patch that removes it automatically.