Skip to main content

Dell’s Pre-installed Software Makes Your PC Vulnerable to Hackers

Discovered in a seemingly harmless support app.
A young security researcher named Bill Demirkapi has discovered that Dell’s pre-installed software leaves computers and laptops open to hijacking.
The said vulnerability exists in the Dell Support Assist app’s remote code execution. The software is used for updating drivers, adjust settings and clean out unused files. But after making certain modifications to the app, hackers can misuse it to install malware into your computer or take over your PC.
This exploit, however, is not open to any hacker out there as only attackers on the same local network as your PC can do it. Also, you have to visit a website controlled by the attacker to fully execute the hijack.
Dell Monitor

How it Works

The attackers simply need to trick the user into clicking on a website. The website then runs malicious JavaScript code which is usually hidden inside ads on legitimate websites, which then allows the attacker to gain the access he needs.
Here’s a demonstration video by Bill Demirkapi, showing how the attack works.

Fix

Dell, meanwhile, has responded to this by releasing a new patch; SupportAssist v3.2.0.90. Users are advised to update their SupportAssist app as soon as possible. If you haven’t received the patch yet, we advise you to uninstall the app until you get it.

Comments

  1. Awais16 March 2021 at 01:33

    Nice Post!
    Sir can you post a guide about fpsc syllabus of senior auditor on your site it will be nice of you….

    ReplyDelete

Post a Comment

Popular posts from this blog

World’s First Urdu Speaking AI Assistant Launched

C-Square, in collaboration with Genesys, has launched the world’s first Urdu-based speaking AI bot called RUBA at the Smart CX conference in Karachi. Similar to Apple’s Siri, Google’s Assistant and Microsoft’s Cortana personal assistants, RUBA is an abbreviation for Real Urdu Bot Automation. The bot can speak and understand Urdu while working as your personal assistant in performing tasks such as messaging someone. Read Related: www.thepakupdates.pk C-Square CEO, Ahsan Mashkoor demonstrated the bot at the conference, saying: RUBA was made in Urdu because of the local population in Pakistan, and for the large labour force working in the Middle-East. Federal Minister for States and Frontier Regions (Safron), Shehryar Khan Afridi, appreciated the efforts of C-Square, saying that Pakistan is moving in the right direction in terms of technology. Talking about the importance of Urdu, he said: It is important for us to learn English, it is good that we learn Chines...
Post a Comment
Read more

OPPO’s Super VOOC can Fully Charge a Phone Battery in 15 Minutes

With every iteration of flagship phones, they get smarter and more powerful. However, one thing that remains seemingly stagnant is battery life. There has been little to no innovation in Lithium Ion batteries and increasing capacity brings its own challenges like higher charging time and the size of the phone. So instead of creating new batteries, companies have shifted their focus on faster charging and OPPO IS coming out with a bang. Super VOOC by OPPO is a battery charger that fully charges a mobile in just 15 minutes. Still in its prototype phase, Super VOOC Flash Charge, which is OPPO’s upgrade to VOOC Flash Charge, can charge a 2500mAh battery from 0-100% in just about 15 minutes. The technology can be used on both USB Type-C and Micro-USB. Super VOOC actually uses a 5v low voltage pulse algorithm that not only provides a safe charging and prevents overheating, the direct power transmission to the battery without any conversion, results in a 97% charging efficiency. T...
Post a Comment
Read more

Samsung Delays Note 7 Shipments for Additional Quality Control Tests

Samsung today said that it is delaying shipments of its newest Note 7 in markets where company’s flagship device Note 7 isn’t launched. Decision was made after media reports that said at least two Note 7 smartphones  exploded while charging . Korean tech giant said that Note 7 shipments are being delayed for now for additional quality control tests to ensure that its product is entirely safe before it is shipped to the consumers. Company has advised its customers to consume original charger only for Note 7 charging. While confirming  Reuters , Samsung said that shipments of the Galaxy Note 7 are being delayed due to additional tests being conducted for product quality. However, it didn’t confirm the markets where the launch / shipments will be delayed. It also didn’t say anything on what kind of quality control tests the company is conducting. It maybe recalled that Note 7 was launched in Korea and some other markets earlier th...
Post a Comment
Read more