Skip to main content

Dell’s Pre-installed Software Makes Your PC Vulnerable to Hackers

Discovered in a seemingly harmless support app.
A young security researcher named Bill Demirkapi has discovered that Dell’s pre-installed software leaves computers and laptops open to hijacking.
The said vulnerability exists in the Dell Support Assist app’s remote code execution. The software is used for updating drivers, adjust settings and clean out unused files. But after making certain modifications to the app, hackers can misuse it to install malware into your computer or take over your PC.
This exploit, however, is not open to any hacker out there as only attackers on the same local network as your PC can do it. Also, you have to visit a website controlled by the attacker to fully execute the hijack.
Dell Monitor

How it Works

The attackers simply need to trick the user into clicking on a website. The website then runs malicious JavaScript code which is usually hidden inside ads on legitimate websites, which then allows the attacker to gain the access he needs.
Here’s a demonstration video by Bill Demirkapi, showing how the attack works.

Fix

Dell, meanwhile, has responded to this by releasing a new patch; SupportAssist v3.2.0.90. Users are advised to update their SupportAssist app as soon as possible. If you haven’t received the patch yet, we advise you to uninstall the app until you get it.

Comments

  1. Awais16 March 2021 at 01:33

    Nice Post!
    Sir can you post a guide about fpsc syllabus of senior auditor on your site it will be nice of you….

    ReplyDelete

Post a Comment

Popular posts from this blog

Science and Technology Ministry Doesn’t have the Manpower to Utilize its R&D Fund

Ministry of Science and Technology and its allied departments lack capacity to utilize its funds efficiently, which is negatively affecting Research and Development (R&D) sector and hence the country has to rely on huge imports. The National Assembly Standing Committee on Science and Technology witnessed interesting moments when the committee offered its services for raising the issue of meager budget allocation at high fora. A parliamentarian assured the ministry that allocation may be raised from the current Rs 7 billion to Rs 10 billion for the ministry and its allied department. However Secretary Science and Technology Fazal Abbas Maken declined the offer while saying that they lacked the capacity to absorb the funds due to human resources shortage. The committee met with Chaudhry Tariq Bashir Cheema in the chair, and started discussing the performance of Pakistan National Accreditation Council (PNAC). Pakistan Spends Lowest in the World on R&D The committee ...
Post a Comment
Read more

PlayStation 4 is Bringing Console Gaming Streaming To PC and Mac

Sony PlayStation is the bestselling gaming console of the current generation devices. The PlayStation 4 has maintained its superiority over competitors like Xbox and Nintendo by regularly offering big updates that improve the user’s gaming experience. Today marks another big step towards improving console gaming. Sony has revealed that the upcoming PS4 firmware update will make PS4 playable on PCs and Macs via streaming. Currently, the streaming feature called Remote Play can also stream games on the PS TV and PS Vita. Those familiar with Sony products must be aware that Sony offers a Remote Play feature for its Sony Xperia devices. The feature allows those with Xperia products to stream PlayStation games to their phone or tablet over WiFI and play them via the standard PlayStation controller. The upcoming version 3.50 software update for PS4 will add the ability to “Remote Play” PS4 games on a home computer, effectively turning a laptop or desktop with mediocre specs to a remo...
Post a Comment
Read more

OPPO’s Super VOOC can Fully Charge a Phone Battery in 15 Minutes

With every iteration of flagship phones, they get smarter and more powerful. However, one thing that remains seemingly stagnant is battery life. There has been little to no innovation in Lithium Ion batteries and increasing capacity brings its own challenges like higher charging time and the size of the phone. So instead of creating new batteries, companies have shifted their focus on faster charging and OPPO IS coming out with a bang. Super VOOC by OPPO is a battery charger that fully charges a mobile in just 15 minutes. Still in its prototype phase, Super VOOC Flash Charge, which is OPPO’s upgrade to VOOC Flash Charge, can charge a 2500mAh battery from 0-100% in just about 15 minutes. The technology can be used on both USB Type-C and Micro-USB. Super VOOC actually uses a 5v low voltage pulse algorithm that not only provides a safe charging and prevents overheating, the direct power transmission to the battery without any conversion, results in a 97% charging efficiency. T...
Post a Comment
Read more