Adding insult to injury
by Volker Weber
our goal was to enhance the experience for users
Lenovo, you are insulting our intelligence. Do you seriously think that anybody, anyone, will believe that you are enhancing a user's experience by adding ads to the content they are viewing? And that it's OKish to insert a proxy and a root certificate for that purpose? Because yada yada yada ...
Here is what you could have written:
We made a stupid mistake. Can we please ask for forgiveness?
And then, maybe, hoist the person responsible up a flagpole by their tiny balls? You think that maybe a bit too much? In that case you should look at the attack vector he created.
Update: Slowly getting there.
We're sorry. We messed up. We're owning it. And we're making sure it never happens again. Fully uninstall Superfish: http://t.co/mSSUwp5EQE
— Lenovo United States (@lenovoUS) February 20, 2015
Comments
Jesus. Major F-up there indeed.
I just read how Robert Graham extracted the certificate and it's password. Impressively simple.
I wonder how Lenovo will fix that problem for all those people having their Laptops. Most probably they will not.
it's a pity. I thought Lenvo is building good machines, and worth a look when someone needs a Windows Laptop. Until now.
I wonder if this provides enough arguments for filing a class action.
Well said.
Komodia has a slight problem now:
www.komodia.com
*************
Site is offline due to DDOS with the recent media attention.
Contact point is: Barak Weichselbaum (barak@komodia.com)
*************
Lenovo reads vowe.net?
https://twitter.com/lenovoUS/status/568578319681257472
Yes. And no. Thanks for the heads up.
"However, user feedback was not positive..."
http://support.lenovo.com/us/en/product_security/superfish