The next Silk Road Mastermind should not use a Lenovo 
Nor a hard drive
Topic: Lenovo Group has been pre-installing tracking software on their PCs (Read 1833 times)
February 23, 2015, 04:33:42 AM
February 22, 2015, 06:05:58 PM
I really hope this will put a final stop to OEM putting sponsored bloatware on their machines...
February 22, 2015, 02:38:38 PM
Mad about Lenovo ? check this out..
"The U.S. National Security Agency has figured out how to hide spying software deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers, giving the agency the means to eavesdrop on the majority of the world's computers.."
http://www.reddit.com/r/Bitcoin/comments/2wdyla/exactly_how_the_nsa_pwns_your_hard_drive/
Wow, that's even more fucked up.
So what's the 'cure' for this one? Use only HDD from trusted manufacturers?
As you can see in the article, there are no manufacturers left to trust.
apsolutely. recently we were talking about hard drivers, then another surprise with sim cards, and now lenovo laptops.
welcome to the future, where u have anything but privacy., and isnt freedom what they should advocate the most?
btw from a legal point of view; better call Saul :]
cheers
February 22, 2015, 02:26:22 PM
Mad about Lenovo ? check this out..
"The U.S. National Security Agency has figured out how to hide spying software deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers, giving the agency the means to eavesdrop on the majority of the world's computers.."
http://www.reddit.com/r/Bitcoin/comments/2wdyla/exactly_how_the_nsa_pwns_your_hard_drive/
Wow, that's even more fucked up.
So what's the 'cure' for this one? Use only HDD from trusted manufacturers?
As you can see in the article, there are no manufacturers left to trust.
February 22, 2015, 11:55:42 AM
Mad about Lenovo ? check this out..
"The U.S. National Security Agency has figured out how to hide spying software deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers, giving the agency the means to eavesdrop on the majority of the world's computers.."
http://www.reddit.com/r/Bitcoin/comments/2wdyla/exactly_how_the_nsa_pwns_your_hard_drive/
Wow, that's even more fucked up.
So what's the 'cure' for this one? Use only HDD from trusted manufacturers?
February 22, 2015, 11:28:34 AM
That's why I always install my operating systems, first thing with a new computer is delete everything...
February 22, 2015, 11:20:42 AM
At first HDD, now lenovo... all people wants spy us!
February 22, 2015, 10:36:47 AM
And you won't be able to have a private conversation.
February 22, 2015, 09:53:39 AM
First thing that ran across my mind is the lawsuit. Imagine the level of privacy breach taking place over here.
The computers in my last office were Lenovo and we were processing highly confidential documents between lawyer and doctors (medical claims company), potentially there could be thousands of lawsuits.
Bet your bottom dollar the NSA were aware of Superfish, assuming they're not the people behind this tracking software
Soon there will be no anonymous in this internet world, they know everything.
But internet scammer would not feel free again and thats good.
February 22, 2015, 09:15:22 AM
First thing that ran across my mind is the lawsuit. Imagine the level of privacy breach taking place over here.
The computers in my last office were Lenovo and we were processing highly confidential documents between lawyer and doctors (medical claims company), potentially there could be thousands of lawsuits.
Bet your bottom dollar the NSA were aware of Superfish, assuming they're not the people behind this tracking software
February 22, 2015, 09:12:40 AM
Mad about Lenovo ? check this out..
"The U.S. National Security Agency has figured out how to hide spying software deep within hard drives made by Western Digital, Seagate, Toshiba and other top manufacturers, giving the agency the means to eavesdrop on the majority of the world's computers.."
http://www.reddit.com/r/Bitcoin/comments/2wdyla/exactly_how_the_nsa_pwns_your_hard_drive/
February 22, 2015, 09:09:35 AM
They offer a removal tool now[1] and from what I read[2][3] MS had a guide to disable it since 2011 because it cause issues with the Internet Explorer, since it hit the News their anti-virus now also removes it.
[1] http://support.lenovo.com/us/en/product_security/superfish_uninstall
[2] sorry its german http://www.heise.de/security/meldung/Microsofts-Virenscanner-entfernt-Superfish-2557232.html
[3] http://support.microsoft.com/kb/2520435
[1] http://support.lenovo.com/us/en/product_security/superfish_uninstall
[2] sorry its german http://www.heise.de/security/meldung/Microsofts-Virenscanner-entfernt-Superfish-2557232.html
[3] http://support.microsoft.com/kb/2520435
February 22, 2015, 08:58:22 AM
First thing that ran across my mind is the lawsuit. Imagine the level of privacy breach taking place over here.
February 22, 2015, 08:57:13 AM
Nothing surprises me anymore, seems like every device has the potential to spy on you nowadays.
Orwell must be doing somersaults in his grave.
Orwell must be doing somersaults in his grave.
February 22, 2015, 07:57:00 AM
This is just outrageous. Soon we will discover some other company had installed some hardware that key-logs to steal passwords and such.
February 22, 2015, 07:52:32 AM
this is so unbelievable. i was looking in buying a laptop this week, i can't trust anything anymore. i think i am gonna format all my windows and switch to Linux now
February 22, 2015, 07:18:57 AM
Un-fucking-believable...
Maybe couple of law suits + boycott would teach them a lesson?
This could be useful:
http://www.theverge.com/2015/2/20/8079933/lenovo-superfish-removal-tool-uninstall
Maybe couple of law suits + boycott would teach them a lesson?
Quote
Lenovo forum posts indicate that Superfish has been preinstalled on PCs since at least mid-2014. A Lenovo press release says the following laptop models may be affected:
G Series: G410, G510, G710, G40-70, G50-70, G40-30, G50-30, G40-45, G50-45
U Series: U330P, U430P, U330Touch, U430Touch, U530Touch
Y Series: Y430P, Y40-70, Y50-70
Z Series: Z40-75, Z50-75, Z40-70, Z50-70
S Series: S310, S410, S40-70, S415, S415Touch, S20-30, S20-30Touch
Flex Series: Flex2 14D, Flex2 15D, Flex2 14, Flex2 15, Flex2 14(BTM), Flex2 15(BTM), Flex 10
MIIX Series: MIIX2-8, MIIX2-10, MIIX2-11
YOGA Series: YOGA2Pro-13, YOGA2-13, YOGA2-11BTM, YOGA2-11HSW
E Series: E10-30
http://www.pcworld.com/article/2886278/how-to-remove-the-dangerous-superfish-adware-presintalled-on-lenovo-pcs.htmlG Series: G410, G510, G710, G40-70, G50-70, G40-30, G50-30, G40-45, G50-45
U Series: U330P, U430P, U330Touch, U430Touch, U530Touch
Y Series: Y430P, Y40-70, Y50-70
Z Series: Z40-75, Z50-75, Z40-70, Z50-70
S Series: S310, S410, S40-70, S415, S415Touch, S20-30, S20-30Touch
Flex Series: Flex2 14D, Flex2 15D, Flex2 14, Flex2 15, Flex2 14(BTM), Flex2 15(BTM), Flex 10
MIIX Series: MIIX2-8, MIIX2-10, MIIX2-11
YOGA Series: YOGA2Pro-13, YOGA2-13, YOGA2-11BTM, YOGA2-11HSW
E Series: E10-30
This could be useful:
http://www.theverge.com/2015/2/20/8079933/lenovo-superfish-removal-tool-uninstall
February 22, 2015, 06:01:23 AM
February 20, 2015
Los Angeles, California
File this under ‘you can’t make this stuff up.’
Lenovo Group, the largest computer manufacturer in the world, has made a rather stunning admission that they have been pre-installing tracking software on their PCs.
The tracking software is made by a company called Superfish, which apparently paid some “very minor compensation” to Lenovo for putting the software on people’s computers.
The Superfish program is a total disaster.
It has image recognition algorithms which essentially monitor what a user is looking at… then suggests relevant ads based on what it thinks you might like.
This is not only REALLY high up on the creepy scale, it also completely destroys Internet security.
Whether you’re buying something online or accessing Internet banking, the Superfish program essentially cuts the secure link between you and sensitive websites that you’re trying to access.
According to the first user who found the vulnerability a few weeks ago, “[Superfish] will hijack ALL your secure web connections (SSL/TLS) by using self-signed root certificate authority, making it look legitimate to the browser.”
This means that the tracking software basically fools a web browser into believing that a connection is secure when it’s not… all for the purpose of pushing more ads in your face.
This scheme is so powerful that even if users uninstall the Superfish software, the security breach still remains.
This is so flagrant I have to imagine that even the NSA is shocked.
After its initial approach of being completely unapologetic and dismissal, Lenovo is now groveling for forgiveness.
The company’s Chief Technology Officer now says, “We messed up badly here,” and “We made a mistake.”
Duh. But untold amounts of consumers out there have been totally violated.
There are a few interesting points to make here–
1) Privacy isn’t dead. But it’s extremely difficult to maintain. There are so many forces out there trying to pry whatever little privacy remains from us, one has to fight tooth and nail to preserve it.
2) There’s no transparency in the system; we never really know what’s going on behind the scenes with big institutions.
Governments and politicians will lie to our faces. They’ll tell us to be excited and that everything is fine; then behind the scenes they’ll plan for capital controls and huge tax increases.
No one has any idea what kind of toxic crap banks have on their balance sheets. They’ll post record profits and tell us how successful they are. But internally they know that it’s only a matter of time before they collapse (as we saw in 2008).
Even major tech brands are betraying the public in the dark of night with crazy spyware or selling us all out to government agencies.
There are very few, if any, big institutions out there that we can trust anymore.
And maybe that’s how it should be.
It’s a shark-filled world with bad people who do bad things. Perhaps it’s all the better that a trusted brand becomes the poster child for betrayal.
Because if Lenovo is doing this, are we supposed to be so naïve to presume that Google, Apple, AT&T, etc. are not?
Question everything.
Source:
Simon Black
Founder, SovereignMan.com
Los Angeles, California
File this under ‘you can’t make this stuff up.’
Lenovo Group, the largest computer manufacturer in the world, has made a rather stunning admission that they have been pre-installing tracking software on their PCs.
The tracking software is made by a company called Superfish, which apparently paid some “very minor compensation” to Lenovo for putting the software on people’s computers.
The Superfish program is a total disaster.
It has image recognition algorithms which essentially monitor what a user is looking at… then suggests relevant ads based on what it thinks you might like.
This is not only REALLY high up on the creepy scale, it also completely destroys Internet security.
Whether you’re buying something online or accessing Internet banking, the Superfish program essentially cuts the secure link between you and sensitive websites that you’re trying to access.
According to the first user who found the vulnerability a few weeks ago, “[Superfish] will hijack ALL your secure web connections (SSL/TLS) by using self-signed root certificate authority, making it look legitimate to the browser.”
This means that the tracking software basically fools a web browser into believing that a connection is secure when it’s not… all for the purpose of pushing more ads in your face.
This scheme is so powerful that even if users uninstall the Superfish software, the security breach still remains.
This is so flagrant I have to imagine that even the NSA is shocked.
After its initial approach of being completely unapologetic and dismissal, Lenovo is now groveling for forgiveness.
The company’s Chief Technology Officer now says, “We messed up badly here,” and “We made a mistake.”
Duh. But untold amounts of consumers out there have been totally violated.
There are a few interesting points to make here–
1) Privacy isn’t dead. But it’s extremely difficult to maintain. There are so many forces out there trying to pry whatever little privacy remains from us, one has to fight tooth and nail to preserve it.
2) There’s no transparency in the system; we never really know what’s going on behind the scenes with big institutions.
Governments and politicians will lie to our faces. They’ll tell us to be excited and that everything is fine; then behind the scenes they’ll plan for capital controls and huge tax increases.
No one has any idea what kind of toxic crap banks have on their balance sheets. They’ll post record profits and tell us how successful they are. But internally they know that it’s only a matter of time before they collapse (as we saw in 2008).
Even major tech brands are betraying the public in the dark of night with crazy spyware or selling us all out to government agencies.
There are very few, if any, big institutions out there that we can trust anymore.
And maybe that’s how it should be.
It’s a shark-filled world with bad people who do bad things. Perhaps it’s all the better that a trusted brand becomes the poster child for betrayal.
Because if Lenovo is doing this, are we supposed to be so naïve to presume that Google, Apple, AT&T, etc. are not?
Question everything.
Source:
Simon Black
Founder, SovereignMan.com
Jump to: