ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    CloudFlare Exposes More Malware from Komodia and Superfish

    IT Discussion
    superfish komodia security
    2
    4
    1.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • scottalanmillerS
      scottalanmiller
      last edited by

      Lenovo appears to not be alone, but certainly the big player, in the Superfish SSL hijacking debacle. Three pieces of software have been identified as having the same exposed keys as Lenovo. Komodia is the actual vendor causing the issues here and their website is under DDoS attack which ArsTechnia makes some inappropriate ethical comments about how it is never okay to do a DDoS, which is ridiculous. That's like saying that there should never be consequences for international attacks or ethical violations. I've lost a lot of respect for Ars Technica on this one. I have no idea why they felt the need to interject their opinion on that in this news report - leaving journalism and switching to personal soap box for no reason.

      But needless to say, people being sold "security" software are being put at risk.

      http://arstechnica.com/security/2015/02/ssl-hijacker-behind-superfish-debacle-imperils-big-number-of-users/

      DashrenderD 1 Reply Last reply Reply Quote 0
      • DashrenderD
        Dashrender @scottalanmiller
        last edited by

        @scottalanmiller said:

        I have no idea why they felt the need to interject their opinion on that in this news report - leaving journalism and switching to personal soap box for no reason.

        Probably because the writer doesn't see that their statement is an opinion.

        1 Reply Last reply Reply Quote 2
        • DashrenderD
          Dashrender
          last edited by

          Well, I guess better late than never. I just received this from Best Buy.

          Dear JASON,

          Thank you for your recent purchase of your Lenovo laptop from Best Buy®.

          As you may have heard, Lenovo was alerted of a potential security issue related to the Superfish Visual Discovery software, which has been pre-installed on some of its laptops. While your device may not be affected, we wanted to ensure you were aware of the report.

          If your Lenovo laptop was purchased after September 1, 2014, we recommend you remove the Superfish software. The software may have been removed through an automatic update, but if it was not we will happily remove the software for you, for free, either remotely via Geek Squad® (click chat with an Agent) or at your local Best Buy store. The entire process takes approximately 10-15 minutes.

          If you would like to remove Superfish Visual Discovery software on your own, you can do so by leveraging the Lenovo support site.

          Thank you again for choosing to purchase your Lenovo laptop at Best Buy.

          Sincerely,
          Best Buy

          1 Reply Last reply Reply Quote 0
          • scottalanmillerS
            scottalanmiller
            last edited by

            LOL, GeekSquad just figured out what malware is.

            1 Reply Last reply Reply Quote 0
            • 1 / 1
            • First post
              Last post