Dell admits installing security hole on laptops, apologizes, offers fix | Network World
Dell acknowledges a root certificate it installed on its laptops was a bad idea and is pushing a patch to permanently remove it.
In a blog post company spokesperson Laura Thomas says eDellRoot was installed as a support tool to make it faster and easier for customers to service the devices. But some of those customers discovered the certificate and recognized it as a serious security threat.
“We have posted instructions to permanently remove the certificate from your system here,” Thomas writes. We will also push a software update starting on November 24 that will check for the certificate, and if detected remove it. Commercial customers who reimaged their systems without Dell Foundation Services are not affected by this issue. Additionally, the certificate will be removed from all Dell systems moving forward.”Dell acknowledges security hole in new laptopsFor those who don’t want to use the pushed patch, instructions for removing eDellRoot manually is a 17-step process that takes up 11 Word document pages, including screenshots. The patch - Click Here – can also be downloaded.