Superfish 2.0: Now Dell is Breaking HTTPS

wr250 · November 28, 2015, 07:22:15 AM

dell install the superfish man in the middle attack, without superfish.
https://www.eff.org/deeplinks/2015/11/superfish-20-now-dell-breaking-https

MV/Liberace! · November 28, 2015, 07:48:09 AM

Quote from: wr250 on November 28, 2015, 07:22:15 AM
dell install the superfish man in the middle attack, without superfish.
https://www.eff.org/deeplinks/2015/11/superfish-20-now-dell-breaking-https

one of the world's most horribly run companies...

cweb · December 02, 2015, 08:53:11 AM

How did they think this was a good idea? Did they think they were never going to get caught?

What really pisses me off is that the Dell Twitter account said it "doesn't pose a threat."

Just like, you know, using a toaster in the bathtub.

BellBoy · December 02, 2015, 08:59:21 AM

Quote from: MV on November 28, 2015, 07:48:09 AM
one of the world's most horribly run companies...

Years ago, I had a Dell computer... once.

SredniVashtar · December 02, 2015, 10:18:45 AM

Quote from: BellBoy on December 02, 2015, 08:59:21 AM
Years ago, I had a Dell computer... once.

I am actually typing on a Dell laptop right now. Perhaps that explains why I am such a bitter, twisted bastard!

cweb · December 02, 2015, 09:19:19 PM

Microsoft is also revoking trust from the stupid Dell certificate.
https://technet.microsoft.com/en-us/library/security/3119884.aspx

QuoteWindows PCs will no longer trust Dell's self-signed root certificate, amid concerns it can be used to conduct man-in-the-middle attacks on millions of computers.

Microsoft said in a security bulletin that it updated its certificate list to revoke its trusted status.

Of course, Microsoft is so perfect...

BellGab.com Archive

Superfish 2.0: Now Dell is Breaking HTTPS

wr250

MV/Liberace!

cweb

BellBoy

SredniVashtar

cweb