Embed Size (px)
Citation preview
JUST INTERESTING /SECURITY /TECHNOLOGY
0
SuperfishVulnerability – Free GifromLenovoBY · PUBLISHED FEBRUARY 20,
2015 · UPDATED MAY 23, 2016
This week saw some
staggering news, which
even now a couple of
days later I still find hard
NEXT STORY
Choosing the Best UK VPN
PREVIOUS STORY
Saving Money with Google
to believe. It’s
something you might
expect happening in
North Korea or China,
but not here!
THe hardware
manufacturer Lenovo,
who sell millions of
laptops and PC all over
the world has been
installing an adware
program called
Superfish on all their
new machines. That’s
right, no longer do you
have to worry about
getting malware
installed from visiting
dodgy porn or torrent
sites, just buy a Lenovo
laptop and they’ll pre-
install them for you.
So let’s just state that
again –
A computer
It’s that incredible, I
think it’s worth
repeating. It doesn’t
matter that it has a cute
cartoony name like
Superfish, this is an
incredible abuse of trust
powered simply by
greed.
The adware installs
adverts into your
browsing which make
manufacturer
called Lenovo is
pre-installing
adware on new
computers.
HOW TO WATCH THE BBC FROM ANYWHERE
INFORMATION
Privacy
INTERESTING LINKS
BBC Iplayer on Ipad Abroad
How to Watch BBC Iplayer Abroad
Lenovo money
everytime you click on
them. You know
adware, the stuff we all
hate and go to great
lengths to avoid
installing.
Lenovo justified
themselves in
pretending that these
‘MONEY MAKING
ADVERTS’ were actually
for the customer’s
benefit – describing
Superfish as advanced
technology which helps
customers find different
products at lower prices
using image analysing
techniques. I’m sure
everyone capable of
operating a laptop is
able to see through that
pathetic justification.
Unfortunately it get’s
worse, not only
Reporters Without Borders
USA Proxy Servers
Using Smart DNS
Superfish is happily
inserting damn
annoying adverts into
your browsing but the
method it uses is
actually making your
computer even more
vulnerable.
It’s called a Man in the
Middle attack and it’s
something I have
demonstrated on this
blog previously. But
basically they’re
intercepting even your
secure traffic so that
they can insert their
Superfish inserts
a self-signed root
certificate onto
your computer
giving it the
capacity to
intercept all your
HTTPS encrypted
traffic
money making adverts.
They’re apparently
using the same default
certificate on every
single machine which
effectively compromises
security on each of
these. Each Lenovo
machine which is
affected basically has a
pre-installed
vulnerability waiting to
be used by anyone who
wants to intercept your
traffic.
It’s truly incredible and
it’s been allegedly going
on since mid-2014 so
who knows how many
millions of machines are
riddled with this
program.
Here’s a tool from the
security company Last
Pass which checks if you
are at risk – Superfish
Checker.
Hopefully Lenovo suffer
a huge commercial loss
due to this incredibly
greedy and sneaky act –
I for one will never
consider buying
anything from this
company ever again.
Posts You MayEnjoy:1. No Such Thing as a
Free VPN – theHola Price First of
all I’d like to ask,
would anyone
mind...
2. Global InternetWar – ChineseGreat CannonWe’ve all seen those
scaremongering
stories on
mainstream media,
about...
3. May you Rot in Hell
Tags: lenovo laptop
lenovo security risk
remove superfish
removing superfish Superfish
what is superfish
YOU MAY ALSOLIKE...
– Ask Toolbar Idon’t swear much,
in fact there are
only three...
4. How Can I FindFree Ninja ProxyLists Like
everything online
that is free, proxy
lists do come...
BrokenSmart DNSfor
5
InternetMonitoring –
0
TheCompleteLackof
0
24
NOV,
2014
USNetflix –Here’s theFix
14
JUN,
2012
UKSnoopingPlans
14
MAR,
2014
FacebookPrivacy
Name * Email *
LEAVE A REPLY
Comment
Website
Post Comment
Ninja Proxy Surfing © 2016. All RightsReserved.Powered by WordPress. Theme by PressCustomizr.
