The Intel Driver Update Utility is not the most commonly found application on PCs but someone you know may have stumbled upon it or had it installed by Geek Squad or the local equivalent. Since Windows Vista the tool has been available, it checks your system for any Intel parts, from your APU to your NIC and then looks for any applicable drivers that are available. Unfortunately it was doing so over a non-SSL URL which leaves the utility wide open to a man in the middle attack and you really do not want a compromised NIC driver. The Inquirer reports today that Intel quietly updated the tool on January 19th to resolve the issue, ensuring all communication and downloads are over SSL. If you know anyone using this tool, recommend they update it immediately.
"Intel has issued a fix for a major security vulnerability in a driver utility tool that could have allowed a man-in-the-middle attack and a malware maelstrom on victims' computers."
Here is some more Tech News from around the web:
- Eighteen year old server trumped by functional 486 fleet! @ The Register
- Solus Project: No Longer Just A Chrome OS Alternative @ Linux.com
- Google Chrome is getting a speed boost of up to 25 percent – and soon @ The Inquirer
- E-Mail Spam Goes Artisanal @ Slashdot
- Facebook Messenger: All your numbers are belong to us @ The Register
- IRS 'inadvertently' wiped hard drive Microsoft demanded in audit row @ The Register
- Synaptics IronVeil Fingerprint Security Technology @ eTeknix
- Through The Looking Glass – Questions Of VR's Viability On The PC @ Techgage