Speak of the Devil…
02/14/2015: Researchers revealed Thursday that some laptops sold by China’s Lenovo, the world’s biggest PC maker, had a security flaw that could let hackers impersonate shopping, banking and other websites and steal users’ credit card numbers and other personal data.
The software Superfish has been discovered on certain Lenovo computers which is a security flaw that could let hackers impersonate shopping, banking and other websites and steal users credit card numbers and other personal data.
Lenovo has apologised for pre-loading the computers with Superfish’s visual search software, which captures images that users view online, such as a sofa or pair of shoes, and then shows them ads for similar products.
Lenovo declined to say how many people own laptops infected with the software, but CNET reports the company sold 16 million Windows computers in the fourth quarter of 2014, according to industry analyst IDC. Superfish was installed on more than 11 types of Lenovo laptops sold to the public between September 2014 and January 2015, including the popular Yoga and Flex models, but not ThinkPads, Lenovo said. Lenovo has published a full list of affected computers.
The Department of Homeland Security issued an alert Friday saying Lenovo customers should remove Superfish software because of the hacking dangers. A spokesman for Microsoft told CNET that Windows security software has been updated to detect and remove the Superfish software.
Sources: “1”:http://www.cbsnews.com/news/microsoft-lenovo-superfish-security-flaw/ & “2”:http://www.adelaidetechguy.com.au/home/the-superfish-problem
That’s just the latest concerning only one computer company. Lenovo has a long history of building tenacious adware, “super cookies” and other breaches into their computers without their customers knowledge. Apple is advertised as the least notorious for purposely built-in security breaches, but in actuality, “they frequently have them as well”:https://www.google.com/search?client=ubuntu&channel=fs&q=apple+privacy+violations&ie=utf-8&oe=utf-8. Some have been intentional, like Lenovo, but most are unintentional.
It should be remembered that none of this adware is necessary to operate your computer. It does not enhance the computer’s ability to compute. It is strictly for the benefit of the computer producer and not only without the knowledge of the end user, but can put their customer base at risk.