Dangerous root certificates are a serious problem. From Lenovo’s Superfish to Dell’s eDellRoot and a number of other certificates installed by adware programs, your computer’s manufacturer or a program you installed may have added a certificate that opens you to attack. Here’s how to check if your certificates are clean.

In the past, this hasn’t been an easy process. However, a new Microsoft tool can quickly scan your system and inform you if any certificates are installed that aren’t normally trusted by Microsoft. It’s an especially good idea to run this on new computers to check if they’re open to attack out of the box.

Update: The sigcheck tool didn’t work on Windows 7 at the time of publishing, but Microsoft has updated the tool and it should now work properly on all versions of Windows. So if you couldn’t get it to work before, try it again now!

Read More…

written by: Chris Hoffman