There has been multiple articles talking about the SupportAssistant vulnerability found with Dell computers. This article by the Los Alamos Daily Post does an amazing job describing what the vulnerability actually allows attackers to accomplish:
SupportAssist seeks out several software libraries (Dynamic Link Libraries- DLL) that a rogue user with local access could use to replace the system’s DLL with a malicious file of their own.
The program does not validate whether the DLL is signed, and the program will load an arbitrary, unsigned DLL.
Los Alamos Daily Post
Users need to make sure they are fully up to date and can use the Dell website to verify update information.
cybersqueeze 