Updated: Apr 27
Five high-severity security flaws in Dell’s firmware is putting hundreds of millions of Dell users at risk. This includes all computers that have been shipped since 2009. Here's what you need to know to stay protected.
Currently hackers can gain access to your computer with complete execution abilities without you even knowing it. They can essentially do whatever they want on your computer.
Researchers reported that the flaws allow hackers to escalate their accessibility from a non-administrator on your computer to then having full and complete administative rights.
Even if you think you're protected, you're not.
Even if you have virus protection, or malware protection, a firewall in place, etc. this will not stop these attacks. If your computer is connected to the internet YOU ARE VULNERABLE.
There are five bugs that are collectively tracked as CVE-2021-21551, and they carry a CVSS vulnerability-severity rating of 8.8 out of 10. Sorry for the tech lingo - just know it's important! the risk is high!
The main vulnerabilities that hackers can exploit are:
Accessing sensitive information
Locking you out of your computer.
Access personal accounts
Memory leaks, causing your computer to be unstable.
and so much more!
Update Your Dell computer by June 1st!
SentinelLabs researchers, who discovered this, said they are withholding a proof of concept (other words the instructions on how hackers are doing this) until at least June 1st to give everyone ample time to update their computer.
You can read their entire blog post about this here https://labs.sentinelone.com/cve-2021-21551-hundreds-of-millions-of-dell-computers-at-risk-due-to-multiple-bios-driver-privilege-escalation-flaws/
How to update your computer to stay safe:
The best way to do this is to go to your Dell Command Center in your computer programs. If for some reason you do not have this, you can download it here: https://www.dell.com/support/kbdoc/en-us/000177325/dell-command-update
If you do not feel comfortable with doing these updates, please reach out to me!
Please DO NOT put off getting your Dell computers updated.