A number of security researchers recently discovered that Dell laptops come pre-installed with an additional root certificate call eDellRoot. Since the private key is also available on the machine this exposes their customers to the risk of a Man-in-the-Middle (MITM) attack. In a MITM attack, the attacker sits on the network between server and client and uses the eDellRoot certificate to intercept and manipulate HTTPS connections. This vulnerability leaves anyone using these Dell laptops at risk for sensitive data exposure and even infections with malicious payload, all under the cover of a trusted connection.
That’s why it’s nice to see Qualys honored by “Apps Run the World” in their latest “Cloud Top 500” list of the 500 biggest cloud app vendors in the world. At #223, Qualys is one of the only security service providers to be included, and was recognized for delivering a wide variety of risk management and compliance services for the globally distributed enterprise.