Lenovo PCs Preloaded with Dangerous Adware

Lenovo PCs Preloaded with Dangerous Adware

A vulnerability has been discovered in a piece of software that ships pre-loaded onto Lenovo computers that could grant hackers access to a user’s secure browser data, allowing third parties to potentially collect passwords, bank details, and other sensitive information.

Superfish, an adware program that Lenovo admitted in January it included as standard on its consumer PCs, reportedly acts as a man-in-the-middle” so it can access private data for advertising purposes. The adware makes itself an unrestricted root certificate authority, installing a proxy capable of producing spurious SSL certificates whenever a secure connection is requested. SSL certificates are small files, used by banks, social networks, retailers such as Amazon, and many others, to prove to incoming connections that the site is legitimate. By creating its own SSL certificates, Superfish is able to perform its advertising tasks even on secure connections, injecting ads and reading data from pages that should be private.
The Verge 2/19/15

Lenovo has responded to The Verge, saying it is “thoroughly investigating all and any new concerns raised regarding Superfish.” The company also confirmed that Superfish disabled activation on existing machines last month and that it had been removed from new machines. In January, the company said the technology was innocuous, but the company’s defense of the adware failed to take into account the glaring security hole the world’s largest PC manufacturer has apparently built into thousands of its PCs.
The Verge 2/19/15

133 total views, 1 views today

(Visited 2 times, 1 visits today)

6 thoughts on “Lenovo PCs Preloaded with Dangerous Adware

  1. My sister has a leveno laptop with Windows8 on it. I sure hope she doesn’t have that dangerous adware on her laptop. I won’t try to find it as its not mine. She doesn’t have PC magic. Don’t know what security she has as I haven’t looked but probably Norton. I just hope her computer is secure.

  2. I purchased a new computer. I have the old drive (holds PCMatic license and runs PCMatic) in my new computer as an extra HD. I want to install PCMatic on my new drive. how?

  3. I buy from a local PC shop that builds it’s own PCs.

    May cost more, but i know only the operating system and drivers for the motherboard, etc are installed.

    Also if anything goes wrong it will be fixed quickly.

  4. Interesting. I’m looking at notebooks and have a short list of three machines. One was the Yoga 2 Pro. My list is down to two now. Guess which one I dropped! I’m guessing that this news is going to do a lot of damage to Lenovo.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.