Security Update:Some Lenovo Laptop Users Vulnerable to Cyber Attacks Due to Adware Software
Date and Time
Lenovo personal computer users
As of September 2014, computer manufacturer Lenovo began shipping Windows laptops preloaded with adware, Superfish VisualDiscovery. This adware makes users vulnerable to cyber attacks; such as viewing data encrypted with SSL technology.
Advanced Users: For a complete description of the vulnerability refer to US Computer Emergency Response Team’s Alert (TA15-051A) - Lenovo Superfish Adware Vulnerable to HTTPS Spoofing at https://www.us-cert.gov/ncas/alerts/TA15-051A.
- Lenovo personal computers acquired after August 2014
WHAT'S THE PROBLEM?
Remote attackers can read encrypted web traffic, redirect traffic from official websites to forged websites, and perform other attacks.
HOW DO I PROTECT MY COMPUTER?
Although Lenovo has stated they have discontinued the practice of pre-installing Superfish VisualDiscovery, the systems that came with the software already installed will continue to be vulnerable until corrective actions have been taken.
Uninstall Superfish VisualDiscovery and associated root CA certificate
- If you are supported by ITFS or have different IT support, no action on your part is required.
- If you do not have IT support or they do not support your computer, refer to US Computer Emergency Response Team’s Alert (TA15-051A) - Lenovo Superfish Adware Vulnerable to HTTPS Spoofing at https://www.us-cert.gov/ncas/alerts/TA15-051A on how to uninstall the software and remove the certificate.
- Lenovo Statement on Superfish - http://news.lenovo.com/article_display.cfm?article_id=1929
- What are CA Certificates? - https://technet.microsoft.com/en-us/library/cc778623%28v=ws.10%29.aspx
- Beginner’s Guide to SSL Certificates- https://www.symantec.com/content/en/us/enterprise/white_papers/b-beginne...
- IT Security – http://it.ucsf.edu/security