Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLaptops and mobile computersLenovo laptops loaded with Superfish malware


BDFL - Memuneh
61812 posts

Uber Geek
+1 received by user: 12466

Administrator
Trusted
Geekzone
Lifetime subscriber

Topic # 165761 19-Feb-2015 20:02
One person supports this post
Send private message

It seems Lenovo laptops are being loaded with Superfish malware out of the factory.

The malware installs a SSL certificate and acts as a proxy, in effect doing a MITM attack to decrypt any encrypted pages (such as search engines) and analyze pages to add their own advertising and popups.

If you like your privacy and security...




Backblaze cloud backup (personal and business) | Geekzone broadband switch | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Business Transformation | Enterprise Content Management | Customer Relationship Management | Sharesies investment fund

Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3
2465 posts

Uber Geek
+1 received by user: 735

Trusted
Lifetime subscriber

  Reply # 1242548 19-Feb-2015 20:07
2 people support this post
Send private message

One of my suppliers has been encouraging me to start quoting Lenovo desktops for clients, and I was wavering a bit.  I'm not considering it any more (even though this issue is supposedly only on consumer machines).  This tells me a lot about the ATTITUDE of a company.




"4 wheels move the body.  2 wheels move the soul."

“Don't believe anything you read on the net. Except this. Well, including this, I suppose.” Douglas Adams



BDFL - Memuneh
61812 posts

Uber Geek
+1 received by user: 12466

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1242572 19-Feb-2015 20:52
Send private message

Certainly not looking good.




Backblaze cloud backup (personal and business) | Geekzone broadband switch | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Business Transformation | Enterprise Content Management | Customer Relationship Management | Sharesies investment fund

 
 
 
 


14451 posts

Uber Geek
+1 received by user: 1899


  Reply # 1242583 19-Feb-2015 20:57
Send private message

Wow if true.

1433 posts

Uber Geek
+1 received by user: 375


  Reply # 1242605 19-Feb-2015 21:19
Send private message

Shocking but not entirely dissimilar to malware on all major brands hard drives exposed recently...

Kaspersky's reconstructions of the spying programs show that they could work in disk drives sold by more than a dozen companies, comprising essentially the entire market. They include Western Digital Corp, Seagate Technology Plc, Toshiba Corp, IBM, Micron Technology Inc and Samsung Electronics Co Ltd.


Russian researchers expose breakthrough U.S. spying program

How many of these were brought for corporate use.
This certainly lessens my opinion of Lenovo that's for sure.

gzt

10313 posts

Uber Geek
+1 received by user: 1584


  Reply # 1242610 19-Feb-2015 21:23
Send private message

freitasm: It seems Lenovo laptops are being loaded with Superfish malware out of the factory.

The malware installs a SSL certificate and acts as a proxy, in effect doing a MITM attack to decrypt any encrypted pages (such as search engines) and analyze pages to add their own advertising and popups.

If you like your privacy and security...

Not good. They will regret that for a long time.

gzt

10313 posts

Uber Geek
+1 received by user: 1584


  Reply # 1242655 19-Feb-2015 22:01
Send private message

Dairyxox: Shocking but not entirely dissimilar to malware on all major brands hard drives exposed recently...

Kaspersky's reconstructions of the spying programs show that they could work in disk drives sold by more than a dozen companies, comprising essentially the entire market. They include Western Digital Corp, Seagate Technology Plc, Toshiba Corp, IBM, Micron Technology Inc and Samsung Electronics Co Ltd.


Russian researchers expose breakthrough U.S. spying program

How many of these were brought for corporate use.
This certainly lessens my opinion of Lenovo that's for sure.

Yes, this is entirely dissimilar.

1433 posts

Uber Geek
+1 received by user: 375


  Reply # 1242667 19-Feb-2015 22:14
Send private message

There are several similarities.

3259 posts

Uber Geek
+1 received by user: 643

Trusted

  Reply # 1242696 19-Feb-2015 23:46
Send private message

Is this just a mistake, a rogue staffer, or a marketing department decision f* up?

I hope its not the latter.

And we see one of these stories each year - with malware on usb sticks given out as corporate promos, or pre-installed ona  tablet etc

usually a rogue staffer is assigned as the scapegoat and the company puts out a statement that it was the factory that screwed up, they take privacy seriously, someone has been fired, bla bla bla




Ray Taylor
Taylor Broadband (rural hawkes bay)
www.ruralkiwi.com

There is no place like localhost
For my general guide to extending your wireless network Click Here

Mad Scientist
19341 posts

Uber Geek
+1 received by user: 2532

Trusted
Lifetime subscriber

  Reply # 1242700 19-Feb-2015 23:55
Send private message

and when exactly did it start?




Swype on iOS is detrimental to accurate typing. Apologies in advance.

gzt

10313 posts

Uber Geek
+1 received by user: 1584


  Reply # 1242702 19-Feb-2015 23:58
Send private message

Dairyxox: There are several similarities.

Probably not so much it should be confused in the same thread, but here we go ; )

http://www.theregister.co.uk/2015/02/17/kaspersky_labs_equation_group/
http://mobile.eweek.com/security/equation-group-spyware-poses-threats-far-beyond-its-original-purpose.html

Kaspersky discovered that one. There is no indication their product will detect it, anyone know differnet?

3888 posts

Uber Geek
+1 received by user: 1274


  Reply # 1242704 20-Feb-2015 00:01
2 people support this post
Send private message

This is a chinese government scheme to mine and steal data. 

Huawei are doing the same with every chip designed to sniff data packets. 


The conspiracy theorist in me :)


I am planning on buying the new x1 with the sm951 ssd , at such time they come on sale. 

gzt

10313 posts

Uber Geek
+1 received by user: 1584


  Reply # 1242708 20-Feb-2015 00:08
Send private message

raytaylor: Is this just a mistake, a rogue staffer, or a marketing department decision f* up?

I hope its not the latter.

And we see one of these stories each year - with malware on usb sticks given out as corporate promos, or pre-installed ona  tablet etc

usually a rogue staffer is assigned as the scapegoat and the company puts out a statement that it was the factory that screwed up, they take privacy seriously, someone has been fired, bla bla bla

I think its pretty simple. Manufacturers just assume the parties offering them money to preload (ie; bloat) the system are not (a) evil or (b) stupid and get a contract signed to that effect. But no actual security auditing. That would be expensive.

But probably this requirement is about to be added. ; )

1245 posts

Uber Geek
+1 received by user: 137


  Reply # 1242725 20-Feb-2015 00:57
One person supports this post
Send private message

i stopped buying PCs the day a brand new HP netbook came with both Norton and McAffee installed. Not sure how they managed that in their deployment image.

These days for any brand new PC I help set up for friends/family, first thing I do is a clean install



BDFL - Memuneh
61812 posts

Uber Geek
+1 received by user: 12466

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1242965 20-Feb-2015 11:57
Send private message

Lenovo just managed to make the web unsafe for a lot more people, not only their customers: Superfish Security Certificate Password Cracked.




Backblaze cloud backup (personal and business) | Geekzone broadband switch | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Business Transformation | Enterprise Content Management | Customer Relationship Management | Sharesies investment fund



BDFL - Memuneh
61812 posts

Uber Geek
+1 received by user: 12466

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1242969 20-Feb-2015 11:58
Send private message

And now a CERT Vulnerability Note on Komodia interceptor.




Backblaze cloud backup (personal and business) | Geekzone broadband switch | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Business Transformation | Enterprise Content Management | Customer Relationship Management | Sharesies investment fund

 1 | 2 | 3
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Geekzone Live »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.