Another day - another security vulnerability: Dell Support Assist

A Windows support tool bundled with Dell computers has a high-severity security hole that leaves millions of systems at risk of a privilege-escalation attack, Dell has announced that both the Business and Home versions of its SupportAssist tool have a security vulnerability within the PC Doctor component that requires immediate patching. The discovery was made by SafeBreach, and there could be over 100 million systems that are affected

If you are using Dell SupportAssist for Business PCs version 2.0, or Dell SupportAssist for Home PCs version 3.2.1 or an earlier version, your system is vulnerable. You need to update to at least Dell SupportAssist for Business PCs version 2.0.1 or Dell SupportAssist for Home PCs version 3.2.2.

P.S. Since we have no use for the tool, I suggest we just uninstall it for supported customers…

Thanks,

Related Articles
Yet another very clever phishing technique revealed
The below example is very clever as the bad guys just bought hosting space on the Azure cloud, so when you go there you see a signed certificate belonging to Microsoft and the domain ends with windows.net which looks like a legitimate Microsoft ...
Firefox Releases Critical Patch Update to Stop Ongoing Zero-Day Attacks
If you use the Firefox web browser, you need to update it right now. Mozilla earlier today released Firefox 67.0.3 and Firefox ESR 60.7.1 versions to patch a critical zero-day vulnerability in the browsing software that hackers have been found ...
FYI: Another new clever type of Email phishing attack
FYI: This is now being sent on mass and might confuse users to enter password details Note the nice trick with the **** password hidden, which is a clever way making this look more authentic
Due to the Webroot mess, MS is now demanding 2FA from MSP's to all users
MS just made it really easy to for us to decide when/if to enable MFA for all users: We will not be able to be MS partners if we don’t enable MFA for admins and a policy that slowly enables MFA to all users, read the new guidelines here: ...

Another day - another security vulnerability: Dell Support Assist

Another day - another security vulnerability: Dell Support Assist

Related Articles

Yet another very clever phishing technique revealed

Firefox Releases Critical Patch Update to Stop Ongoing Zero-Day Attacks

FYI: Another new clever type of Email phishing attack

Due to the Webroot mess, MS is now demanding 2FA from MSP's to all users