Skip to main content

Lenovo Laptop Owners Beware: Your Device May Have Preinstalled Malware



Chinese computer manufacturer Lenovo has admitted that laptops shipped to stores and consumers in late 2014 had malware preinstalled.

You might want to read that again.

A major manufacturer with $38.70 billion sales in 2014 alone, has been selling computers that are actively invading their user’s privacy, enabling man in the middle attacks and basically undermining trust.

Meet Superfish. Actually, Don’t.

Central to this revelation is a piece of software – until recently considered crapware or bloatware – called Superfish Visual Discovery, a browser extension that ships preinstalled on Lenovo computers ostensibly as a technology to “find and discover products visually”.
Because obviously you can’t discover products with your ears.
The idea is that Superfish, present as a browser extension, analyses images that you view on the web, checks if they’re products, then offers “identical and similar product offers that may have lower prices”.

How does it work?

“The Superfish Visual Discovery engine analyzes an image 100% algorithmically, providing similar and near identical images in real time without the need for text tags or human intervention. When a user is interested in a product, Superfish will search instantly among more than 70,000 stores to find similar items and compare prices so the user can make the best decision on product and price.”

The problem is, not only is Superfish a browser hijack – anti-malware scanners will routinely remove adware tools that do the same thing – but there’s also the issue of the MITM vulnerability.

Remember Man in the Middle Attacks? Lenovo Does

Superfish doesn’t only hijack your browser to display ads. It also installs a self-signed root HTTPS certificate, an act that essentially renders HTTPS pointless, by intercepting encrypted traffic on every website you visit (HTTPS is the sauce that makes the web secure, and enables online banking, secure shopping, etc.). Evidence has been found that HTTPS site certificates are in fact signed by Superfish (rather than, say, your bank) and worse still (if you thought it couldn’t get any worse) the private encryption key is the same on all Lenovo computers!

This means fake sites cannot be detected by the web browser on a Lenovo PC.

To make matters worse, Rob Graham of Errata Security has cracked the encryption key that secured the Superfish certificate enabling anyone to launch MITM attacks upon PCs with that certificate installed.
Read More

Labels

Labels:

Comments

Post a Comment

Popular posts from this blog

How To Hide Text In Microsoft Word 2007, Reveal It & Protect It

Sometimes what we hide is more important than what we reveal. Especially, documents with sensitive information, some things are supposed to be ‘for some eyes only’. Such scenarios are quite common, even for the more un-secretive among us. You want to show someone a letter composed in MS Word, but want to keep some of the content private; or it’s an official letter with some part of it having critical data. As important as these two are, the most common use could involve a normal printing job. Many a time we have to print different versions of a document, one copy for one set of eyes and others for other sets. Rather than creating multiple copies and therefore multiple printing jobs, what if we could just do it from the same document?  That too, without the hassle of repeated cut and paste. We can, with a simple feature in MS Word – it’s just called Hidden and let me show you how to use it to hide text in Microsoft Word 2007. It’s a simple single click process. Open the docum...
1 comment
Read more

Boom, the startup that wants to build supersonic planes, just signed a massive deal with Virgin

Have you heard about Boom? Boom is a relatively new startup that’s aiming to build something pretty crazy. They’re not building an app… or a social network… or even some new gadget for the Kickstarter crowd. Boom wants to build planes. Really, really, really fast planes. Specifically, they’re trying to design and build a supersonic passenger plane that goes 2.2x the speed of sound. If all goes to plan, they’ll be able to shuttle people from New York to London in 3.5 hours, and SF to Tokyo in 4.5. Sound crazy? I wouldn’t disagree. It’s worth noting that the company is in the very early days for something as intensive, massive, and hugely expensive as designing and producing a passenger aircraft. They’re still working on their first prototype, and hope to fly it by late next year. But it’s also worth noting that the team behind the plane has some serious talent in its blood: the company’s 11 employees have collectively contributed to over 30 aircrafts — having worked on thin...
Post a Comment
Read more

Fun Tools to Translate Your Name into Japanese Calligraphy

Japanese calligraphy is an artistic writing style of the Japanese language. Its Chinese origins can be traced back to the twenty-eighth century BCE. Calligraphy found its way into Japanese culture in 600 CE and is known as the karayo tradition. For Westerners, calligraphy is forever fascinating. However, it takes years to learn how to properly draw the signs. Two basic principles must be known to understand Japanese writing: there are different writing styles and different alphabets. Kaisho for example, is a writing style most commonly used in print media. Tensho on the other hand is used in signatures. Other writing styles are Reisho, Gyosho and Sousho. The alphabets include Kanji, Hiragana, and Katakana. Katakana is used for writing foreign words. It can also serve to highlight words, in analogy to capital letters as we know them from the Roman / Latin alphabet (Romaji in Japanese). Each Kanji character has a meaning of its own, while Hiragana or Katakana characters merely repres...
Post a Comment
Read more