Eve Cesista
The preloaded OEM (original equipment manufacturers) software update tools on selected personal computers might cause serious problems to the security features of the desktops.
Researchers from Duo Security found "remote code execution flaws" in support tools from Acer, ASUSTek, Lenovo, Dell, and HP. What does it mean? PC World stated that the computer system may be compromised as hackers will be able to "remotely execute code with system privileges."
The affected computers will not be able to encrypt the download update with the use of HHTP connections. As a result, the attackers can obstruct requests and can send malware viruses to the computers.
"During our research, we were often greeted by an intricate mess of system services, web services, COM servers, browser extensions, sockets, and named pipes," as stated on their website. "Many confusing design decisions made us wonder if projects were assembled entirely from poor StackOverflow posts."
So, what are the specific risks that the security systems are facing? The Register listed them down in layman's terms:
The companies are asked for a reply. But Dell was the only one who provided a statement and the rest are yet to address the issue.
They wrote that they are aware of the Duo Security report and they are in the midst of testing the affected tools as well. The company is also thankful about the report and said that the customer security will always be their top priority.
most read
related stories
more stories from News
Samsung might switch from AMD RDNA cores to an in-house GPU for the Exynos 2600 SoC. Stay tuned for updates.
ernest hamiltonDiscover the latest: Google Maps gets a major redesign! Explore the updates in action on Android.
ernest hamiltonGet the scoop on iPhone 17 rumors: from a 'Slim' version to a revamped Dynamic Island, explore the possibilities!
ernest hamiltonExperience AI-enhanced One UI 6.1 on your Galaxy Z Fold 4. Upgrade now for smarter interactions and enhanced user experience!
ernest hamiltonBumble's dynamic shift: Women no longer need to make the first move. Explore automated conversation starters and new dynamics!
ernest hamiltonDiscover the latest leaked specs for the Sony Xperia 1 VI, including cameras, chipset, and battery details. Stay updated!
ernest hamiltonThe Rabbit R1 appears to be just an Android app, despite earlier speculations. Read more about Rabbit's denial.
ernest hamiltonGoogle introduces a playful twist to calls with audio emojis, including a fart button. Discover the fun!
ernest hamilton