Home / Early Warning / Cybersecurity Highlights / Lenovo's computers vulnerable to MITM

Lenovo's computers vulnerable to MITM

02/19/2015

From September 2014 to January 2015 Lenovo precharged in some of their PCs a software, called Superfish, capable of intercepting HTTPS traffic, using self-signed root certificates, to insert advertisements in webpages. Therefore, some users were vulnerable to MITM attacks. Lenovo published an Automatic Removal Tool so remove Superfish, apologized and promised not to install Superfish again.