Your new Windows laptop typically ships with an awful lot of bloatware you don’t need.
Often, it’ll just slow down your computer a tad. But occasionally, a pre-installed piece of manufacturer cruft can pose a serious security risk — and that’s why you should probably update or uninstall Dell’s SupportAssist right away.
The app, which Dell’s support page states is preinstalled on “most of all new Dell devices running Windows” and billed as “the industry’s first automated proactive and predictive support technology,” has apparently been vulnerable to a hack since at least last October, according to 17-year-old security researcher Bill Demirkapi.
It’s not clear why it’s only getting patched just now.
It’s a potentially nasty one: Dell’s SupportAssist has administrator-level access to Windows and is designed to automatically install updates to your computer, and Demirkapi found a way to hijack those update requests — theoretically letting a hacker install something nasty they could use to further breach your PC. You can read all about it, and see a proof of concept, in his blog post.
On the plus side, Demirkapi told ZDNet that it only works if the hacker is on the same local network as your PC, say the public Wi-Fi at your local Starbucks, workplace, or school. And fixing should be as easy as uninstalling the app, or updating to SupportAssist v 126.96.36.199 or later.
You can find the installer at Dell’s support page for the vulnerability, right here.
Have your say
More Technology Headlines
- How to save battery life on your Android phone
- This KNUST monitoring panel can check energy consumed by your appliances
- London Underground to get full 4G coverage
- GIFEC wins 3 awards at GITTA 2019
- Inlaks adjudged 2019 Banking Technology Solutions Provider
- Instagram hides likes count in international test 'to remove pressure'
- Netflix confirms launch of mobile-only streaming service
- Google's Project Dragonfly 'terminated' in China
- China to provide scanners for 5 airports in Ghana
- Democrats considering a bill to ban Facebook from the finance industry
- ‘Africa Gateway’ launched to give insights into promising African markets
- Huawei will reportedly lay off hundreds of US workers
- Facebook 'to be fined $5bn over Cambridge Analytica scandal'
- Photos confirm Galaxy Note 10 won’t have a headphone jack
- Samsung Galaxy Note 10 breaks cover in these first ‘official’ leaked photos