Skip to main content

Dell’s Pre-installed Software Makes Your PC Vulnerable to Hackers

Discovered in a seemingly harmless support app.
A young security researcher named Bill Demirkapi has discovered that Dell’s pre-installed software leaves computers and laptops open to hijacking.
The said vulnerability exists in the Dell Support Assist app’s remote code execution. The software is used for updating drivers, adjust settings and clean out unused files. But after making certain modifications to the app, hackers can misuse it to install malware into your computer or take over your PC.
This exploit, however, is not open to any hacker out there as only attackers on the same local network as your PC can do it. Also, you have to visit a website controlled by the attacker to fully execute the hijack.
Dell Monitor

How it Works

The attackers simply need to trick the user into clicking on a website. The website then runs malicious JavaScript code which is usually hidden inside ads on legitimate websites, which then allows the attacker to gain the access he needs.
Here’s a demonstration video by Bill Demirkapi, showing how the attack works.

Fix

Dell, meanwhile, has responded to this by releasing a new patch; SupportAssist v3.2.0.90. Users are advised to update their SupportAssist app as soon as possible. If you haven’t received the patch yet, we advise you to uninstall the app until you get it.

Comments

  1. Awais16 March 2021 at 01:33

    Nice Post!
    Sir can you post a guide about fpsc syllabus of senior auditor on your site it will be nice of you….

    ReplyDelete

Post a Comment

Popular posts from this blog

NADRA Makes a Substantial Reducation in Smart ID Card Fees

The fee for the Smart National Identity Card (SNIC) has been decreased by NADRA. Interior Minister, Chaudhry Nisar, has ordered the authority to reduce the fees for the smart ID cards substantially, we have learned. Smart National Identity Card The smart ID card contains  a QR code for easier and faster identification as well as a data chip with 36 security features which makes it one of the most secure cards in the world. Each layer of the card comes with its own security features and it also has secure communication protocols for remote identification. A large amount of space on the card has been made available for the private sector to utilise for their products and services. Although, its expensive private sectot to use this card, once the number of smart card users in the country reaches critical mass, it will be much more profitable for them to use this universal and secure platform. New Fee Structure NADRA has decreased the fee for smart ID card from Rs. 15...
1 comment
Read more

World’s First Urdu Speaking AI Assistant Launched

C-Square, in collaboration with Genesys, has launched the world’s first Urdu-based speaking AI bot called RUBA at the Smart CX conference in Karachi. Similar to Apple’s Siri, Google’s Assistant and Microsoft’s Cortana personal assistants, RUBA is an abbreviation for Real Urdu Bot Automation. The bot can speak and understand Urdu while working as your personal assistant in performing tasks such as messaging someone. Read Related: www.thepakupdates.pk C-Square CEO, Ahsan Mashkoor demonstrated the bot at the conference, saying: RUBA was made in Urdu because of the local population in Pakistan, and for the large labour force working in the Middle-East. Federal Minister for States and Frontier Regions (Safron), Shehryar Khan Afridi, appreciated the efforts of C-Square, saying that Pakistan is moving in the right direction in terms of technology. Talking about the importance of Urdu, he said: It is important for us to learn English, it is good that we learn Chines...
Post a Comment
Read more

Online Passport Renewal Service Revealed in Pakistan

Like we told you earlier about the  NADRA’s online passport system  that they have been developing for quite some time now and it appears that we have finally a sneak peak of what it will look like at the time of launch. NADRA and Directorate General of Immigration and Passports have collaborated to offer Pakistani citizens a service that they badly needed, i.e. to be able renew their passports online without going to Passport offices. Service would be aimed for both Pakistanis living in Pakistan and abroad. Service is currently not available immediately, but it is said that service will be made available very soon now. Anyone with an expired passport or if its validity is less than 7 months would be able to ahead and apply for passports online and get the renewed passport delivered to a designated postal address. Apply for Passport Renewal Online Make sure you have all  supporting documents  available with you. You should...
1 comment
Read more