If you recently bought or are planning to buy a Lenovo…

Published on February 19, 2015 By DrJBHL In Personal Computing

You should be warned that it ships with crapware (as many do to increase OEM profits)…but it also ships with Superfish on it.

Superfish is adware which ‘sees’ the images on the webpages you visit and then offers ads compatible with them…for instance, if you look for a new table, it will try to insert ads with tables in them to “help” you. SO you say, All the sights I look at are https protected. Sad news: Superfish also installs a root certificate in your Windows certificate store, which cancels the https protection. Perfect!

“The pre-installed certificate is the exact same on all systems as it seems. And so is obviously the private key, which seems to be part of the Superfish software as well. What it means? Well, you can just issue certificates and computers having the Superfish software installed will recognize them as valid.” – infected.io

*poof: Security severely compromised: Every site you visit (banking included) is man-in-the-middled.

OK…I’ll just uninstall Superfish, you say. You’ll also have to uninstall the certificate…and you have to do that yourself.

Here’s how:

First locate the Windows certificate store (Screen shot from gHacks):

Tap on the Windows-key to bring up the start menu or start screen.
Type certmgr.msc and hit enter. This opens the Certificate Manager.
Use the folder structure on the left to navigate to Trusted Root Certification Authorities -> Certificates.
Check if Superfish Inc. is listed among the certificates.
If it is, right-click the certificate and select Delete from the context menu to remove it.

I have to agree with Martin Brinkmann. It’s bad enough having to work at removing all the crapware they put on your computer, which you didn’t ask for, have any use for, nor want.

Now? Lenovo actually installed adware which spies on you and a root certificate which makes your shiny new computer vulnerable to man-in-the-middle attacks (of which there are many and usually done via phishing).

This is a REALLY poor business practice which I hope they didn’t know about (the root certificate part)…and it could damage their rep for many years to come. Frankly, it’s a scandal.

Sources:

http://www.ghacks.net/2015/02/19/lenovo-pcs-ship-with-preinstalled-adware-and-root-certificate/?_m=3n%2e0038%2e1524%2ehj0ao01hy5%2e1kul

Others in the text. All checked. All safe.

Comments (Page 2)

Cauldyth

on Feb 20, 2015

All part of the recent trend to shove more and more advertising in people's faces for a quick buck.

Samsung got busted for their TVs inserting ads into your locally streamed content. Their response? "It was just a mistake, that feature got turned on by accident." What wasn't an accident was writing the code to do it in the first place.

https://gigaom.com/2015/02/10/samsung-tvs-start-inserting-ads-into-your-movies/

alaknebs

on Feb 20, 2015

ms windows defender now kills the fish automatically... cert and all ... or so i read.

starkers

on Feb 25, 2015

It was bound to happen.... a lawsuit has been filed against Lenove AND SuperFish.

Can't say I'm surprised.... can't say it's not deserved, either.

With a bit of luck it'll cost 'em an arm and a leg... which hopefully deters them [and others] from perpetrating such devious and underhanded practices ever again.

Still reckon there's a crime or three in there somewhere... and if there isn't there should be.... with heavy penalties.

Welcome Guest! Please take the time to register with us.
There are many great features available to you once you register, including:

Richer content, access to many features that are disabled for guests like commenting on the forums.
Access to a great community, with a massive database of many, many areas of interest.
Access to contests & subscription offers like exclusive emails.
It's simple, and FREE!