Lenovo Concedes ‘Superfish’ Concern in its Notebooks; Spells Out measures to Retard Adware

February 23, 2015, By Sanjeev Ramachandran

Although hesitant initially to admit the security concerns that crawled on to its notebooks, Lenovo has now apologized for the security vulnerability it dealt by incorporating Superfish.

The Chinese manufacturer has now advised users to curb down the adware from gaining root access with the help of removal tools.

Lenovo has stated that Superfish were found loaded on the products that were manufactured since September. However, they also said that they were not loaded on its entire products, with their products like ThinkPad, ThinkCentre, Lenovo Desktop, ThinkStation, ThinkServer and System X being the exception.


Apologizing for the lack of detection of this security malware, Lenovo has vowed that future notebooks would keep Superfish at bay. The company has also cited that the pre-load removal was ordered in January. But if that was the case, it still remains questionable on why Lenovo turned a blind eye to the issue in the recent weeks.

Superfish was loaded as an adware to aid users to provide details of what they frequently deal with, by means of the searches made.

However, it was later found that Superfish carried out setting up a self-signed root certificate in the local trusted CA store, thereby gaining access to the HTTP and SSL/TLS connections.

Users were offered measures to uninstall Superfish. However, it was found later that uninstalling won’t get rid of the root-certificate access it obtains, forcing the manufacturer to now come up with remedial measures.

Users are now recommended to go-through the removal process, which guides them through manually removing the adware from their browsers after uninstalling it. Microsoft has also updated its Windows Defender recently to tackle down Superfish in the OS.

Lenovo has said that apart from Microsoft, they have also been working together with McAfee to bring down the security issues caused by Superfish.

© 2008-2012 DeviceMag.com - All rights reserved | Privacy Policy