Lenovo and Superfish

Last week, there were reports that Lenovo laptops have a security flaw. It is called Superfish adware and the laptops are shipped with this installed. Lenovo has since issued an apology and a removal tool. So what was the big deal?

Superfish came preloaded on their notebook products from September 2014 to February 2015. Many laptops come preloaded with applications but Superfish has ability to intercept SSL and TLS website connections. It can inspect the content and use a third-party library from Komodia which gives the adware the ability to impersonate any SSL website. This puts you at higher risk. It can look at emails, banking, and social media sites you visit. This is especially a problem if you use public wi-fi.

We tried to find out more about Komodia, however the site is currently down either due to ddos attacks over this or just too many connections. We will see if we can find out more about this over the next week.

If you have one of the laptops in question, you can use one of these tools to remove it.

Jody Victor

Source: http://www.zdnet.com/article/lenovos-superfish-its-worse-than-we-thought/