News, tips, advice, support for Windows, Office, PCs & more
Home icon Home icon Home icon Email icon RSS icon

We're community supported and proud of it!

  • Dell computers put at risk

    Posted on May 6th, 2021 at 14:21 Comment on the AskWoody Lounge

    So today’s headline that I wrote above is one that I see too often. It gets you to be worried about something that I honestly don’t think attackers will use as a means to attack us.

    Here’s the background (thanks to reader RougeSec58 for the links:)

    Dell support article

    Reddit thread with N-Able script to remove it.

    So the other day I read this twitter post….

    Due to the introduction of Driver Signature Enforcement & Kernel Patch Protection, it’s become increasingly rare for attackers to create and execute #Windows rootkits.

    All of these firmware/rootkit headlines make me ponder… gee… why is it that attackers use phishing lures so much? Because that’s the low hanging fruit. It’s not easy to attack us to go after Spectre style attacks. I see this Dell issue in the same way. It’s way easier to get us with phishing lures and click baits than it is with these sort of attacks.

    “there is no evidence at this time that its flaws have been exploited in the wild.”

    Just because there is a possibility of attack doesn’t mean it is probable that it’s  being attacked.

    As always, feel free to disagree with me and educate me that I’m in the wrong. That’s what security is all about anyway ….weighing the risks and trying to determine if THAT is going to get me or if it’s just headlines to make me worry.