the winxnet blog Blog Header Image

Winxnet IT Security Alert: Superfish Information

Posted on 2/20/2015 10:13:15 AM by Dr. Eugene Slobodzian
Category: Security & Compliance



Winxnet IT Security Alert

As the news about Lenovo spyware ‘Superfish’ is gaining momentum in the media, Winxnet Security wants to provide some clarity on risks and remediation measures our clients should take to make sure their systems are not vulnerable.

  1. What is the problem? Some recently shipped Lenovo laptops and PCs were delivered with Superfish adware which may allow attackers to decrypt and snoop SSL (‘https’ sites you often see when entering in payment or other personal information) traffic to certain sites. There is a high potential for the release of new malware that would exploit this vulnerability that could lead to further compromise of affected systems.
  1. Am I affected by this? Whether you have a Lenovo PC or not, it is very easy to test if your browser is affected by this vulnerability. Just follow this link https://lastpass.com/superfish/. Rest assured that we examined the security of this site found no problems.
  1. What do I do if I am affected? The good news this issue is quite easy to fix. The link above will display the steps necessary to remove the offending software and certificate.

If you still have questions, or are worried about other IT security issues, contact your trusted IT provider. If you do not feel that your current provider has the IT security experience, schedule a call with our experts today.