DSDTestProvider, new certificate on Dell computers. Over the weekend, one user του Reddit παρατήρησε ότι το laptop της εταιρείας που χρησιμοποιούσε περιείχε ένα πιστοποιητικό root, μαζί με ένα ιδιωτικό κλειδί. Η εταιρεία αντέδρασε αμέσως δημοσιεύοντας τρόπους για την αφαίρεση τους.
But the series continues. There seems to be a second such certificate.
Dell has tried to explain the presence of the original certificate, called eDellRoot, as an added mechanism to improve customer support…
Regardless of how the company explains eDellRoot, it should soon justify the existence of a second certificate, called DSDTestProvider.
The second certificate is used by Dell System Detect (DSD), a application with 'product locator' features used by the company's website to help users locate their laptop model and other technical details.
Just like eDellRoot, DSDTestProvider is also installed in the root root store, along with a private key. This of course allows malicious users to get data from the system and use them for malicious purposes, such as MITM attacks (Man-in-the-middle).
What can you do:
Do not expect the company to find a good excuse, apologize, and then give the removal instructions. To remove DSDTestProvider, follow these steps:
In the box search of the Start Menu type “certmgr.msc” and run the application.
From the window that will open select “Trusted authorities versionof root certificates” or “Trusted Root Certification Authorities”
Select "Certificates" or "Certificates"
Find and delete “eDel | Root” and “DSDTestProvider” certificates
Do a reviewmovement on your computer.