Dell has issued instructions on how to remove a self-signed root certificate from a number of its PCs after users raised security concerns in an episode reminiscent of Lenovo’s Superfish controversy earlier this year.
The Austin, Texas-based firm confirmed it was Dell Foundation Services that installed the ‘eDellRoot’ certificate, but stressed its existence was for customer support reasons – not like Superfish, which was used to inject adverts onto affected systems.
Those who discovered the offending certificate claimed it was a risk to any affected system, but Dell has not revealed which of its products are impacted.
“Unfortunately, the certificate introduced an unintended security vulnerability. To address this, we are providing our customers with instructions to permanently remove the certificate from their systems via direct email, on our support site and Technical Support.
“We are also removing the certificate from all Dell systems moving forward. Note, commercial customers who reimage their own systems will not be affected by this issue. Dell does not pre-install any adware or malware. The certificate will not reinstall itself once it is properly removed using the recommended Dell process.”
Dell will also issue a software update removing the certificate later today.
It remains to be seen what reputational damage Dell will suffer, having already witnessed the backlash against Lenovo following Superfish. However the firm is adamant there was no malicious intent behind the certificate and it was only intended to aid customers.
“The certificate is not malware or adware,” Dell said in a blog post. “Rather, it was intended to provide the system service tag to Dell online support allowing us to quickly identify the computer model, making it easier and faster to service our customers. This certificate is not being used to collect personal customer information.”
Do you know the history of Dell? Take our quiz!
German foreign minister warns Russia will face consequences for “absolutely intolerable” cyberattack on ruling party,…
Google is reportedly laying off at least 200 staff from its “Core” organisation, including key…
Investor appeasement? Apple unveils huge $110 billion share buyback program, as sales of iPhone decline…
Tesla retreats from pioneering gigacasting manufacturing process, amid cost cutting and challenges at EV giant
No skynet please. After the US, UK and France pledge human only control of nuclear…
Microsoft's AI investments continue in south east Asia, after investments in Japan, Malaysia, Indonesia, as…