Lenovo has gained a worldwide lack of success by pre-installing it its brand new laptops an adware that clearly brought a lot of issues to the users that have worked with it. Secure connections were being monitored and the fact that a third-party ad was being inserted into all Google searches or other search engines without the permission of the user, were delicate problems that needed an urgent solution. Google Chrome and Internet Explorer have been found to be easily fooled by the app and allow the data to leak an create problems to those who was accessing it. Superfish was installing its own self-signed certificate authority, that lead to fake certificates that were inserted into the commercials and were broadcasted into sessions. Furthermore, the demonstration that a security researcher has made on one of the laptops, using the adware to hack into financial transactions – has topped the argument. On every forum about Lenovo, this application was an atrocity. As a consequence, Lenovo took all the measures possible in order not to lose its clients.
The Superfish removal tool has been created by Lenovo fast and it can be downloaded online, with a simple click that uninstalls the application forever. It can be found at:
Even if the program will run without an installation, it needs to be downloaded first. Obviously, because it is an official release of Lenovo, the removal tool has a public license and it can be analyzed by expert easily. This fact is possible because the removal tool has a source code that has been place on the developer website Github.
In addition to the removal tool that has been released, Robert Graham, CEO of Atlanta-based Errata Security has posted on his blog instructions about how to create a malicious Wi-Fi hotspot to see how the Superfish adware makes the Lenovo laptops to fragile and vulnerable in terms of security.
“This example proves that this exploit is practical, not merely theoretical, as claimed by the Lenovo CTO.”
Using a Raspberry Pi2, a very cheap minicomputer adapter and a microSD card, he has proved that he can log into the Bank of America’s website using a fake name and has shown that the hotspot intercepted the connection and logged the fake name. If there would have been a password, it would have been also logged. Unfortunately, this kind of experiments have been also tried by other hackers using a small amount of money and the Superfish application that seems to help in a lot of unorthodox ways.
Image Source: Realitatea