Microsoft has updated the Certificate Trust list for all supported versions of Microsoft Windows. The move comes after Dell issued an update that removes the eDellRoot certificate from their machines, and after it issued a replacement version of the Dell System Detect application that used a self-signed certificate (DSDTest Provider) that also contained a private key. Dell has also updated the initial instructions to remove the first found cert, and they now contain instructions on how to remove both. Microsoft has stated that there is currently no evidence that attacks related to this issue have been mounted in the wild.
Windows machines stop trusting Dell’s two unconstrained root CA certs
