Researchers from Eclypsium have discovered several security flaws within SupportAssist programs.
This is a suite of software pre-installed by Dell on its machines.
The BIOSConnect component is also affected.
More than 30 million PCs are therefore affected by particularly worrying vulnerabilities.
Malicious people can indeed target the manufacturer's machines remotely, in order to take control of the computer's boot procedure.
From there, hackers can simply break down the devices that are the basis of Windows security.
The places where the vulnerabilities are located are indeed particularly dangerous for the computer system.
The SupportAssist suite is indeed “pre-installed on most Dell Windows PCs” and BIOSConnect simply allows firmware updates to be provided remotely.
It also handles part of the system recovery.
If a hacker manages to exploit any of these loopholes, he can do a lot of damage.
Dell reacted immediately
"The problem affects 129 Dell computer models in the consumer and business segments with laptops, desktops and tablets, including when these devices are protected by Secure Boot, as well as so-called 'Dell Secured-core' PCs" , specifies Eclypsium.
Informed of the problem, Dell deployed a corrective update to address several of the identified vulnerabilities.
You will therefore have to remember to update the BIOSConnect of your Dell PC.
If you do not succeed, it is recommended to deactivate it from the BIOS page, which is not necessarily within the reach of everyone.
If you don't feel able to do it, don't do anything, you might do more damage.
Just prioritize updates through Windows Update.
For the SupportAssist software suite, if you don't need it, uninstall it.
High-Tech
Intel announces the arrival of two new supercharged processors dedicated to gaming laptops
High-Tech
Cybersecurity: A vulnerability affects millions of Android smartphones
Hacker
Cybersecurity
Windows
High-Tech
Pc
Computer science