The Department of Homeland Security (DHS) has advised Chinese laptop maker Lenovo Group to stop installing the Superfish adware on its computers, saying it makes those computers vulnerable to cyberattacks.
Superfish, developed by Israel-based Komodia, has been installed on all computers by Lenovo, the world’s largest PC maker, since 2010. The software introduces vulnerabilities in the way it collects data to serve up ads, and security experts warn it could easily be co-opted to steal user data outright.
Lenovo has denied that Superfish monitors user behavior or records any data, though it is clear that the vulnerabilities it introduces, including a self-signed certificate, could be used to do so.
Lenovo has offered a removal tool on its website as well as instructions to manually remove Superfish from a computer, which users are urged to do. Superfish is Windows exclusive, so consumers who have bought Lenovo laptops but are not running Windows on them are not impacted.
Last 5 posts by Jason Ditz
- Report: US Airstrikes Killed 433 Civilians in Raqqa in August - September 20th, 2017
- 51 Countries Ratify UN Nuclear Weapons Ban - September 20th, 2017
- Russia Says 850 Nusra Fighters Killed in North Syria in 24 Hours - September 20th, 2017
- Spanish Police Step Up Catalonia Raids to Try to Block Referendum - September 20th, 2017
- US Allies Split on Trump's Threat to Destroy North Korea - September 20th, 2017