Researcher Discovers Superfish Spyware Installed on Lenovo PCs

Lenovo, the Chinese tech giant, was shipping PCs with spyware that tracks its customers’ every move online, and renders the computers vulnerable to hackers.
Lenovo, the world’s largest PC manufacturer, was installing Superfish, a particularly pernicious form of adware that siphons data from a user’s machine via web browser. Banking and e-commerce sites, or any web page that purports to be secure with the image of a tiny padlock, are made vulnerable.
The adware discovery was made early last month by Peter Horne, a 25-year veteran of the financial services technology industry, after he bought a brand-new Lenovo Yoga 2 Notepad at a computer retailer in Sydney, Australia.
Even though the PC came with McAfee antivirus software, Mr. Horne said, he installed antivirus software made by Trend Micro. Neither virus scanner picked up any adware on the machine. But Mr. Horne noted that traffic from the PC was being redirected to a website called best-deals-products.com. When he dug further, he found that website’s server was making calls to Superfish adware.
Superfish’s “visual discovery” adware, Mr. Horne and others now say, is far more intrusive than typical adware. It not only drops ads into a user’s web browser sessions, it hijacks a secure browsing session and scoops up data as users enter it into secure websites.
Superfish does this so it can introduce ads into an otherwise encrypted web page, but the way it does so compromises the security of trusted websites and makes it easy for other hackers to intercept users’ communications.
Mr. Horne returned his PC, and went on to test Lenovo’s demonstration machines at Best Buys in New York and Boston, and other retailers in Sydney and Perth. There, he found the adware on other Lenovo Yoga 2 models and the Lenovo Edge 15.
“The company had placed the adware a very low-level part of the operating system,” Mr. Horne said in an interview. “If they can do that, they can do anything.”
In a statement issued Thursday, Lenovo said it had included Superfish in some consumer notebook products shipped between September and December “to help customers potentially discover interesting products while shopping.”
Citing bad user reviews, the company said it stopped including the adware in January, the same month Mr. Horne brought the issue to the company’s attention.
“The problem is: what can we trust?” Mr. Horne said.

Comments

Post a Comment

Popular posts from this blog

How to make ‪#‎symbols‬ with your ‪#‎keyboard‬

Image
Alt + 0153..... ™... trademark symbol Alt + 0169.... ©.... copyright symbol Alt + 0174..... ®....registered trademark symbol Alt + 0176 ...°......degre­e symbol Alt + 0177 ...±....plus-or­-minus sign Alt + 0182 ...¶.....paragraph mark Alt + 0190 ...¾....fractio­n, three-fourths Alt + 0215 ....×.....multi­plication sign Alt + 0162...¢....the cent sign Alt + 0161.....¡..... .upside down exclamation point Alt + 0191.....¿..... ­upside down question mark Alt + 1...........smiley face Alt + 2 ......☻.....bla­ck smiley face Alt + 15.....☼.....su­n Alt + 12......♀.....f emale sign Alt + 11.....♂......m­ale sign Alt + 6....... ♠ .....s­pade Alt + 5....... ♣ ...... ­Club Alt + 3............. ­Heart Alt + 4....... ♦ ...... ­Diamond Alt + 13......♪.....e­ighth note Alt + 14......♫...... ­beamed eighth note Alt + 8721.... ∑.... N-ary summation (auto sum) Alt + 251.....√.....s­quare root check mark Alt + 8236.....∞..... ­infinity Alt + 24.......↑..... ­up arrow Alt + 25......↓...... ­down arrow
Read more

How to Protect Your Computer from Malware and Viruses

Image
  Protecting your computer from malware and viruses is essential to ensure the security and integrity of your personal and sensitive data. Here are some effective steps you can take to safeguard your computer: 1. Install Antivirus Software: A reputable antivirus program is your first line of defense against malware and viruses. Choose a well-known and up-to-date antivirus software, and regularly update its virus definitions. 2. Keep Your Operating System Updated: Regularly update your operating system (e.g., Windows, macOS, Linux) and applications with the latest security patches. This helps to address vulnerabilities that malware could exploit. 3. Use a Firewall: Enable the built-in firewall on your operating system or install a third-party firewall. Firewalls monitor and control incoming and outgoing network traffic, acting as a barrier against unauthorized access. 4. Be Cautious with Email: Malicious attachments and links often come through email. Be wary of opening attachments or c
Read more

How to Turn Wi-Fi On or Off With a Keyboard or Desktop Shortcut in Windows

Image
Some laptops come with “Wi-Fi” function keys or switches that can quickly enable or disable your Wi-Fi. If your PC doesn’t have one of these, though, you can make one with the tools built into Windows. You’ll need to start by creating a desktop or start menu shortcut. Once you’ve done that, you can invoke it with a keyboard shortcut, if you like. Step One: Find the Name of Your Wi-Fi Connection First, you’ll need to check the name of your Wi-Fi connection. You’ll need this to write the commands that enable and disable the Wi-Fi connection. Head to Control Panel > Network and Internet > Network and Sharing Center > Change Adapter Settings. Note the name of the Wi-Fi connection you want to disable. In the screenshot below, the name of the connection is “Wi-Fi”. Step Two: Create the Desktop Shortcuts Now that you know the name of the connection, you can create the desktop shortcuts you need. Right-click the Windows desktop and select New > Shortcut to creat
Read more