May 31, 2016
A 36-page report from Duo Security reveals the sorry state of security regarding laptop OEM bloatware, those annoying software programs usually called driver updaters, but most of the times referenced as crapware, which come built-in with your newly purchased laptop.
The Duo Security team had a look at the built-in driver updater software packaged with laptops from Acer, Asus, Dell, Hewlett-Packard (HP), and Lenovo.
The results of their analysis were not what the team expected and are devastating for the regular user.
What the Duo team discovered is that many laptop and notebook OEMs (Original Equipment Manufacturers) have hastily put together these programs, which at a closer look from trained infosec experts prove to be riddled with a large number of security problems that sometimes lead to the attacker taking over the device.