This enables security expert Marc Rogers on his blog.
The relevant certificate, he says, comes from the Israeli company Komodia. Also Superfish itself points to this company as the culprit.
The certificate would have ended up without the knowledge of Superfish in its adware. Rogers says that Komodia in other software flour evert the same certificate, including a program for parental controls on Internet use by children.
All software Komodia would place themselves between a user’s computer and the server made a connection and so much less secure private connection up.
That would by attackers can easily be replaced by an amended certificate because the programs Komodia not properly check whether that certificate is real from the maker said.
This showed the security expert Filippo Valsorda to. Valsorda has already created a website to quickly check whether Superfish on a computer installed. He has now extended to also look for the presence of Komodia products.
Lenovo has now also released its own program to remove Superfish. Since January, the adware is no longer included on computers
No comments:
Post a Comment