Canadian TV, Computing and Home Theatre Forums - Reply to Topic
Thread: Lenovo caught installing adware on new computers Reply to Thread
Title:
Message:
Trackback:
Send Trackbacks to (Separate multiple URLs with spaces) :
Post Icons
You may choose an icon for your message from the following list:
 

Register Now



In order to be able to post messages on the Canadian TV, Computing and Home Theatre Forums forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.

User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
Please enter a valid email address for yourself.

Email Address:
OR

Log-in










  Additional Options
Miscellaneous Options

  Topic Review (Newest First)
2015-02-24 03:40 PM
Wetware Glad to here.

The more people fight back, the less likely other companies will be to try stuff like this.
2015-02-23 03:41 PM
stampeder
U.S. Class Action Lawsuit proposed

It was only a matter of time:
Quote:
A proposed class-action suit was filed late last week against Lenovo and Superfish, which charges both companies with “fraudulent” business practices and of making Lenovo PCs vulnerable to malware and malicious attacks by pre-loading the adware.

Plaintiff Jessica Bennett said her laptop was damaged as a result of Superfish, which was called “spyware” in court documents. She also accused Lenovo and Superfish of invading her privacy and making money by studying her Internet browsing habits.
http://www.pcworld.com/article/28873...ish-snafu.html



2015-02-21 08:07 AM
Bplayer ^^ Incorrect. WTP will not require a complete redo. You can upgrade, similar to performing the monthly patch updates. This retains all your data, user accounts, installed Desktop programs and Metro apps.
2015-02-21 12:28 AM
gzink But Win10 will need complete redo.
2015-02-20 03:53 PM
timlocke Replacing Windows 8/8.1 with Windows 10 Tech Preview solves that problem. I don't know if my Lenovo had the Superfish, but I checked it and Firefox on it this am using instructions from Ars Technica and it is ok and clean with W 10.
2015-02-20 02:45 PM
gdkitty As well, if you are running Windows Defender, if you do the latest updates for it, It will remove the superfish and repair any of the certificates.
2015-02-20 09:34 AM
905shmick Lenovo has now posted info on how to remove both Superfish & the root certificate

http://support.lenovo.com/us/en/prod...rity/superfish
2015-02-20 03:16 AM
stampeder Similarly to AFF's advice, when I've purchased laptops I've unboxed them, then without ever powering them on a first time I've flipped them over, removed the hard drive, replaced it with a virgin SSD and then installed from scratch, usually with Linux but sometimes with Windows if I'm testing something that requires it. The OEM hard drive goes into an anti-static bag and then into a sealed container in my shed in case I might ever need it. Once the laptop's warranty has expired I'll then reuse that OEM HD for something else if I have a need.

That's how I have avoided the "add-on" software blues like what Lenovo has been caught doing.



2015-02-19 11:09 PM
AFF This is why I format and re-install the OS on most every pc and laptop I have ever bought. They put too much junk on new systems.
2015-02-19 10:34 PM
905shmick From https://www.eff.org/deeplinks/2015/0...ty-its-laptops

Lenovo has not just injected ads in a wildly inappropriate manner, but engineered a massive security catastrophe for its users. The use of a single certificate for all of the MITM attacks means that all HTTPS security for at least Internet Explorer, Chrome, and Safari for Windows, on all of these Lenovo laptops, is now broken. If you access your webmail from such a laptop, any network attacker can read your mail as well or steal your password. If you log into your online banking account, any network attacker can pilfer your credentials. All an attacker needs in order to perform these attacks is a copy of the Superfish MITM private key. There is (apparently) a copy of that key inside every Superfish install on every affected Lenovo laptop, which has now been extracted and posted online.
2015-02-19 05:42 PM
ssbtech But.. but... the NSA does it!
2015-02-19 01:29 PM
audacity I think this should be called "pulling a Sony".
2015-02-19 11:58 AM
905shmick
Lenovo caught installing adware on new computers

http://thenextweb.com/insider/2015/0...new-computers/
It looks like Lenovo has been installing adware onto new consumer computers from the company that activates when taken out of the box for the first time.

The adware, named Superfish, is reportedly installed on a number of Lenovo’s consumer laptops out of the box. The software injects third-party ads on Google searches and websites without the user’s permission.

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

 
For the best viewing experience please update your browser to Google Chrome