Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLaptops and mobile computersLenovo laptops loaded with Superfish malware


BDFL - Memuneh
64673 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

# 165761 19-Feb-2015 20:02
One person supports this post
Send private message

It seems Lenovo laptops are being loaded with Superfish malware out of the factory.

The malware installs a SSL certificate and acts as a proxy, in effect doing a MITM attack to decrypt any encrypted pages (such as search engines) and analyze pages to add their own advertising and popups.

If you like your privacy and security...




Sharesies investment funds | Geekzone broadband switch | Backblaze backup (Geekzone aff) | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Digital Transformation | Enterprise Content Management | Customer Relationship Management | Data Insights, Business Intelligence and Advanced Analytics 

 

 

Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3
2636 posts

Uber Geek

Trusted
Lifetime subscriber

  # 1242548 19-Feb-2015 20:07
2 people support this post
Send private message

One of my suppliers has been encouraging me to start quoting Lenovo desktops for clients, and I was wavering a bit.  I'm not considering it any more (even though this issue is supposedly only on consumer machines).  This tells me a lot about the ATTITUDE of a company.




"4 wheels move the body.  2 wheels move the soul."

“Don't believe anything you read on the net. Except this. Well, including this, I suppose.” Douglas Adams



BDFL - Memuneh
64673 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1242572 19-Feb-2015 20:52
Send private message

Certainly not looking good.




Sharesies investment funds | Geekzone broadband switch | Backblaze backup (Geekzone aff) | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Digital Transformation | Enterprise Content Management | Customer Relationship Management | Data Insights, Business Intelligence and Advanced Analytics 

 

 

 
 
 
 


15163 posts

Uber Geek


  # 1242583 19-Feb-2015 20:57
Send private message

Wow if true.

1493 posts

Uber Geek


  # 1242605 19-Feb-2015 21:19
Send private message

Shocking but not entirely dissimilar to malware on all major brands hard drives exposed recently...

Kaspersky's reconstructions of the spying programs show that they could work in disk drives sold by more than a dozen companies, comprising essentially the entire market. They include Western Digital Corp, Seagate Technology Plc, Toshiba Corp, IBM, Micron Technology Inc and Samsung Electronics Co Ltd.


Russian researchers expose breakthrough U.S. spying program

How many of these were brought for corporate use.
This certainly lessens my opinion of Lenovo that's for sure.

gzt

10909 posts

Uber Geek


  # 1242610 19-Feb-2015 21:23
Send private message

freitasm: It seems Lenovo laptops are being loaded with Superfish malware out of the factory.

The malware installs a SSL certificate and acts as a proxy, in effect doing a MITM attack to decrypt any encrypted pages (such as search engines) and analyze pages to add their own advertising and popups.

If you like your privacy and security...

Not good. They will regret that for a long time.

gzt

10909 posts

Uber Geek


  # 1242655 19-Feb-2015 22:01
Send private message

Dairyxox: Shocking but not entirely dissimilar to malware on all major brands hard drives exposed recently...

Kaspersky's reconstructions of the spying programs show that they could work in disk drives sold by more than a dozen companies, comprising essentially the entire market. They include Western Digital Corp, Seagate Technology Plc, Toshiba Corp, IBM, Micron Technology Inc and Samsung Electronics Co Ltd.


Russian researchers expose breakthrough U.S. spying program

How many of these were brought for corporate use.
This certainly lessens my opinion of Lenovo that's for sure.

Yes, this is entirely dissimilar.

1493 posts

Uber Geek


  # 1242667 19-Feb-2015 22:14
Send private message

There are several similarities.

 
 
 
 


3404 posts

Uber Geek

Trusted

  # 1242696 19-Feb-2015 23:46
Send private message

Is this just a mistake, a rogue staffer, or a marketing department decision f* up?

I hope its not the latter.

And we see one of these stories each year - with malware on usb sticks given out as corporate promos, or pre-installed ona  tablet etc

usually a rogue staffer is assigned as the scapegoat and the company puts out a statement that it was the factory that screwed up, they take privacy seriously, someone has been fired, bla bla bla




Ray Taylor
Taylor Broadband (rural hawkes bay)
www.ruralkiwi.com

There is no place like localhost
For my general guide to extending your wireless network Click Here

Mad Scientist
20924 posts

Uber Geek

Trusted
Lifetime subscriber

  # 1242700 19-Feb-2015 23:55
Send private message

and when exactly did it start?




Involuntary autocorrect in operation on mobile device. Apologies in advance.

gzt

10909 posts

Uber Geek


  # 1242702 19-Feb-2015 23:58
Send private message

Dairyxox: There are several similarities.

Probably not so much it should be confused in the same thread, but here we go ; )

http://www.theregister.co.uk/2015/02/17/kaspersky_labs_equation_group/
http://mobile.eweek.com/security/equation-group-spyware-poses-threats-far-beyond-its-original-purpose.html

Kaspersky discovered that one. There is no indication their product will detect it, anyone know differnet?

4369 posts

Uber Geek


  # 1242704 20-Feb-2015 00:01
2 people support this post
Send private message

This is a chinese government scheme to mine and steal data. 

Huawei are doing the same with every chip designed to sniff data packets. 


The conspiracy theorist in me :)


I am planning on buying the new x1 with the sm951 ssd , at such time they come on sale. 

gzt

10909 posts

Uber Geek


  # 1242708 20-Feb-2015 00:08
Send private message

raytaylor: Is this just a mistake, a rogue staffer, or a marketing department decision f* up?

I hope its not the latter.

And we see one of these stories each year - with malware on usb sticks given out as corporate promos, or pre-installed ona  tablet etc

usually a rogue staffer is assigned as the scapegoat and the company puts out a statement that it was the factory that screwed up, they take privacy seriously, someone has been fired, bla bla bla

I think its pretty simple. Manufacturers just assume the parties offering them money to preload (ie; bloat) the system are not (a) evil or (b) stupid and get a contract signed to that effect. But no actual security auditing. That would be expensive.

But probably this requirement is about to be added. ; )

1245 posts

Uber Geek


  # 1242725 20-Feb-2015 00:57
One person supports this post
Send private message

i stopped buying PCs the day a brand new HP netbook came with both Norton and McAffee installed. Not sure how they managed that in their deployment image.

These days for any brand new PC I help set up for friends/family, first thing I do is a clean install



BDFL - Memuneh
64673 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1242965 20-Feb-2015 11:57
Send private message

Lenovo just managed to make the web unsafe for a lot more people, not only their customers: Superfish Security Certificate Password Cracked.




Sharesies investment funds | Geekzone broadband switch | Backblaze backup (Geekzone aff) | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Digital Transformation | Enterprise Content Management | Customer Relationship Management | Data Insights, Business Intelligence and Advanced Analytics 

 

 



BDFL - Memuneh
64673 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1242969 20-Feb-2015 11:58
Send private message

And now a CERT Vulnerability Note on Komodia interceptor.




Sharesies investment funds | Geekzone broadband switch | Backblaze backup (Geekzone aff) | Amazon (Geekzone aff) | MightyApe (Geekzone aff)

 

My technology disclosure | Digital Transformation | Enterprise Content Management | Customer Relationship Management | Data Insights, Business Intelligence and Advanced Analytics 

 

 

 1 | 2 | 3
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Arlo unveils its first video doorbell
Posted 21-Oct-2019 08:27

New Zealand students shortlisted for James Dyson Award
Posted 21-Oct-2019 08:18

Norton LifeLock Launches Norton 360
Posted 21-Oct-2019 08:11

Microsoft New Zealand Partner Awards results
Posted 18-Oct-2019 10:18

Logitech introduces new Made for Google keyboard and mouse devices
Posted 16-Oct-2019 13:36

MATTR launches to accelerate decentralised identity
Posted 16-Oct-2019 10:28

Vodafone X-Squad powers up for customers
Posted 16-Oct-2019 08:15

D Link ANZ launches EXO Smart Mesh Wi Fi Routers with McAfee protection
Posted 15-Oct-2019 11:31

Major Japanese retailer partners with smart New Zealand technology IMAGR
Posted 14-Oct-2019 10:29

Ola pioneers one-time passcode feature to fight rideshare fraud
Posted 14-Oct-2019 10:24

Spark Sport new home of NZC matches from 2020
Posted 10-Oct-2019 09:59

Meet Nola, Noel Leeming's new digital employee
Posted 4-Oct-2019 08:07

Registrations for Sprout Accelerator open for 2020 season
Posted 4-Oct-2019 08:02

Teletrac Navman welcomes AI tech leader Jens Meggers as new President
Posted 4-Oct-2019 07:41

Vodafone makes voice of 4G (VoLTE) official
Posted 4-Oct-2019 07:36


Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.