Millions of Dell laptops at risk of attack due to security chip flaw — update your PC right now
As reported by Reuters, Dell has released a fix to address a vulnerability which impacts a chip in many of its laptops that stores biometric data, passwords, security codes and more. The flaw was first discovered by researches at Cisco Talos.
Dell apparently validated this analysis in a June security advisory in which it explained that the flaw affects more than 100 models of the company's laptops.
Fortunately, no one has found indications that the flaw has been exploited in the wild, according to Cisco's researchers. Apparently, Dell issued security patches for the issue starting in March and then into April and May.
The Reuters report says the vulnerable chip was the Broadcom BCM5820X which Dell was using in its 'ControlVault' software. Reuters does note that the laptops using that software are more likely to be used in industries handling sensitive information as it's designed to offer heightened security features.
A Dell spokesperson told Reuters that it addressed the flaw "quickly and transparently."
'As always, it is important that customers promptly apply security updates that we make available and move to supported versions of our products to ensure their systems remain secure,' the spokesperson said.
Get instant access to breaking news, the hottest reviews, great deals and helpful tips.
This vulnerability does highlight some of the downsides to keeping biometrics and other sensitive information on your laptop, even with on-device security that is more common today.
Fortunately, there are ways to stay safe in addition to installing the latest security patches. For instance, we've put together a list of 12 mistakes that you should avoid making with your computer.
Relevant to today's news, you should make sure you keep your software up to date, especially security patches. Many people don't update out of an unwillingness to interrupt tasks or fear of new bugs and flaws.
However, keeping your system updated will help make sure you don't have giant holes in your system. Many of these updates can be automated or scheduled, so make sure you don't avoid them and leave your machine vulnerable.
Likewise, it's always a good idea to make sure that your laptop and other devices are protected against malware and other threats by using one of the best antivirus software suites.
Follow Tom's Guide on Google News to get our up-to-date news, how-tos, and reviews in your feeds. Make sure to click the Follow button.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
New York Post
8 hours ago
- New York Post
GOP Sen. Tom Cotton questions new Intel CEO Lip-Bu Tan over alleged ties to Chinese military
A top Republican senator demanded new Intel CEO Lip-Bu Tan reveal if he has any ties to China's Communist Party and military – citing national security concerns. In a letter sent Wednesday to Intel Chairman Frank Leary, Sen. Tom Cotton (R-Ark.) wrote that he is concerned 'about the security and integrity of Intel's operations and its potential impact on US national security,' according to a copy of the letter obtained by The Post. Tan replaced ousted Intel chief Pat Gelsinger in March — a year after the struggling company was awarded a whopping $8 billion in Biden-era CHIPs Act funding. Advertisement 3 Intel CEO Lip-Bu Tan speaking on stage in Taiwan in May. REUTERS Cotton's missive came after a report earlier this year claimed Tan invested at least $200 million across hundreds of Chinese firms between March 2012 and December 2024. Some of these advanced manufacturing and semiconductor firms have been linked to the Chinese Communist Party and military, Reuters reported in April. Advertisement In his letter, Cotton questioned whether the board had required Tan to divest from these stakes before assuming the CEO role. The senator asked whether Tan had disclosed his remaining investments to the US government, since Intel has a responsibility as a major recipient of federal funding. He also demanded to know whether the board was aware of subpoenas targeting Cadence Design – which Tan ran from 2008 to 2021 – before it hired him. 'Intel and Mr. Tan are deeply committed to the national security of the United States and the integrity of our role in the US defense ecosystem,' an Intel spokesperson told The Post. Advertisement Intel added that it will address the matter with Cotton, who asked for responses by Aug. 15. 3 Sen. Tom Cotton sent a letter to Intel's chairman with concerns about Lip-Bu Tan's reported ties to China. 'Intel is required to be a responsible steward of American taxpayer dollars and to comply with applicable security regulations,' Cotton wrote in the letter. 'Mr. Tan's associations raise questions about Intel's ability to fulfill these obligations.' Advertisement In 2024, Intel was awarded $8.5 billion in CHIPs funding under the Secure Enclave program, a national security initiative to make secure microchips for defense and intelligence applications. Later that year, the government slashed that figure by more than $600 million to about $7.85 billion. Intel still ranks as one of the top companies receiving the most federal funding. 3 Intel ranks as one of the top companies receiving the most federal funding. Getty Images A source familiar with the matter told Reuters in April that Tan had divested from his positions in Chinese firms. The outlet reported at the time that Chinese databases still listed many of his investments as current. While it is not illegal for US citizens to hold stakes in Chinese companies, there is a US Treasury list of banned Chinese firms. Reuters reported earlier this year that Tan was not invested directly in any company on that list. Meanwhile, Cadence Design last week agreed to plead guilty and pay more than $140 million to settle charges that it sold its chips to a Chinese military university, according to a Reuters report. Advertisement The institution was believed to be involved in simulating nuclear blasts, according to the report. Those sales took place under Tan's leadership at Cadence. After stepping down as CEO in 2021, Tan stayed on at Cadence as executive chairman through May 2023.
Yahoo
10 hours ago
- Yahoo
Duolingo raises 2025 revenue forecast as AI tools boost user engagement
By Akash Sriram (Reuters) -Language-learning app Duolingo raised its annual revenue forecast and beat second-quarter revenue estimates on Wednesday, anticipating broader adoption of its AI-enhanced subscription tier among its global user base. The company's shares rose about 20% in trading after the bell. Duolingo operates on a freemium model, offering basic language-learning features for free while providing premium capabilities through monthly or annual paid subscriptions. The company now expects revenue for 2025 to be in the range of $1.01 billion to $1.02 billion, compared to analysts' estimates of $996.6 million. It had earlier projected revenue between $987 million and $996 million for the year. Revenue in the April-June period was $252.3 million, compared with analysts' estimates of $240.7 million. Duolingo's two subscription tiers — Super, designed for frequent learners, and Max, tailored for advanced users — include AI-driven features such as video-call conversation practice with chatbots, personalized error analysis and enhanced feedback tools. Since launching an AI-powered video-call tool for Android in January, Duolingo has expanded the feature to additional languages, aiming to boost subscription growth by enabling users to practice natural conversations across a broader linguistic range. Duolingo's gross margin benefited this quarter from lower-than-expected AI costs, as the decline in margin from expanding Max and AI features was much smaller than the company had originally expected. "The cost of calling AI tools has come down a lot. Ads also did better; ads are not a big part of our business, but it turned out that it helped margin a little bit as well," CFO Matt Skaruppa told Reuters. Duolingo leverages generative AI to create and personalize bite-sized lessons across more than 100 language courses. In April, CEO Luis von Ahn said that after taking 12 years to develop the first 100 courses, the company's AI tools helped it introduce 148 new courses in roughly one year. Duolingo expects revenue for the third quarter to be in the range of $257 million to $261 million, compared to analysts' estimates of $253 million, according to data compiled by LSEG. The firm also forecast an adjusted core profit of $288.1 million to $295.5 million for 2025. Sign in to access your portfolio
The Hill
11 hours ago
- The Hill
Senate Republican questions new Intel CEO's ties to China
Sen. Tom Cotton (R-Ark.) on Tuesday pressed the chair of Intel's board about its CEO's ties to China, voicing concerns about the integrity of the semiconductor firm and U.S. national security. In a letter to Intel board chair Frank Yeary, Cotton pointed to recent reporting on Lip-Bu Tan's investments in hundreds of Chinese tech firms, at least eight of which have ties to the Chinese military, according to Reuters. Tan was tapped to lead Intel in March, after former CEO Pat Gelsinger stepped down last December following a 'challenging year' for the company. Before joining Intel, Tan was CEO of Cadence Design Systems — another point of concern raised by Cotton. The software company produces electronic design automation (EDA) technology, which is used to design chips. It agreed to plead guilty and pay $140 million last month for violating export controls by selling the technology to a Chinese military university. 'Intel is required to be a responsible steward of American taxpayer dollars and to comply with applicable security regulations,' Cotton wrote, noting Intel's nearly $8 billion grant under the CHIPS and Science Act. 'Mr. Tan's associations raise questions about Intel's ability to fulfill these obligations,' he added. Cotton asked Yeary what measures Intel has taken to address concerns about Cadence's activities, which occurred during Tan's tenure, and whether it has required him to divest from China-linked semiconductor firms or other 'concerning entities.' The Arkansas Republican also questioned whether Tan has disclosed his China investments and ties to the U.S. government given Intel's involvement in a Pentagon program to build chips for defense and intelligence needs.
