Superfish is Just a Snippet of the Treacherous Breach Brought in by Komodia SSL

February 27, 2015, By Sanjeev Ramachandran

The issue with Superfish bug has almost settled down, after Lenovo’s addressed the matter by ending up all the server tie-ups of the adware with the Chinese manufacturer. That was certainly enough to bring out the happy faces among its customers.

But those smileys may not be the long-lasting, unless you are aware of the fact that the adware parent-source has opened the gates for a root-access.  Not many were aware of the Komodo SSL Digester, until the recent backlash aimed at Lenovo urged for further citations.

And now at the end of the hunt, we are standing at the door of the small IT firm set-up in 2000, which has been the key for security breaches to not just Superfish.

flaw

Around 12 adware and software have now been detected to be using up the Komodia SSL, an outshot that came out of Komodia’s decision to sell its network interception technology. The numbers are sparse indeed, but that doesn’t guide you through the real story of peril. More than 100 clients are actually engaged with the SSL Digester.

Marc Rogers from Cloudfare had explained of the potential threat that can take place with the usage of these. And if found, it’s advisable that you spent some good time to take your machine through a manual uninstall of such breaches.

One among the issues met with the Komodia usage was with its repetitive usage of keys, which was let out by the Superfish mess. But that’s not something which would be willingly admitted by the company, as they are now planning to hand for an updated version.

Plenty of software are still currently on a tie-up with the usage of Komodia, although not on a full-fledged scale. Companies like Lavafish have their saying that Komodia has no longer been involved in their software.

But yet, their current day codings that involve elimination of malicious codes are heavily chipped off from the Komodia roots. And as long as these stay the way they are, it wouldn’t be a surprise if we hear of an iteration that caused the recent stir with Lenovo, but maybe not for Superfish the next time.

© 2008-2012 DeviceMag.com - All rights reserved | Privacy Policy