Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Lenovo users exposed to "massive security risk"
iTnews.aus ^ | May 7, 2015 6:41 AM (AUS) | unattributed

Posted on 05/10/2015 4:02:17 PM PDT by Utilizer

Researchers find more serious flaws.

Lenovo has been accused of putting users at "massive security risk" through newly-discovered flaws in its online product update service which allow hackers to download malware onto user systems through a man-in-the-middle (MiTM) attack.

The holes were revealed by security firm IOActive, just weeks after Lenovo was found to be shipping PCs with pre-installed ‘Superfish' adware that also left its users open to MITM attacks.

In an advisory today, IOActive researchers Michael Milvich and Sofiane Talmat said they had discovered “high-severity” privilege escalation vulnerabilities in Lenovo's system update service, which enables users to download the latest drivers and other software, including security patches, from Lenovo's website.

The researchers found the flaws in February, and have now gone public after giving Lenovo time to develop a patch, which the company issued last month.

(Excerpt) Read more at itnews.com.au ...


TOPICS: Computers/Internet
KEYWORDS: lenovo; malware; security; superfish
More Superfish info. At least there is a patch now...
1 posted on 05/10/2015 4:02:17 PM PDT by Utilizer
[ Post Reply | Private Reply | View Replies]

To: Utilizer

lenovo should have stuck to making Pizza!


2 posted on 05/10/2015 4:03:46 PM PDT by MeshugeMikey ("Never, Never, Never, Give Up," Winston Churchill ><>)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer

Chicom Inside!


3 posted on 05/10/2015 4:09:22 PM PDT by SpaceBar
[ Post Reply | Private Reply | To 1 | View Replies]

To: Utilizer

Most major software and hardware manufactures have at one time placed some sort of malware on their products. The Chinese are no different.


4 posted on 05/10/2015 4:39:34 PM PDT by Dallas59 (Only a fool stumbles on things behind him.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Dallas59

“Hi, I’m Bob from windows support. Your computer has a virus that is affecting other computers. Can you sign on for me? “


5 posted on 05/10/2015 5:31:44 PM PDT by EQAndyBuzz (two if by van, one if by broom)
[ Post Reply | Private Reply | To 4 | View Replies]

To: SpaceBar

Yep. Anyone who buys Lenovo gets what they deserve.


6 posted on 05/10/2015 5:34:48 PM PDT by Henry Hnyellar
[ Post Reply | Private Reply | To 3 | View Replies]

To: Utilizer

bkmk


7 posted on 05/12/2015 12:55:50 PM PDT by AllAmericanGirl44
[ Post Reply | Private Reply | To 1 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson