When Lenovo has decided to pre-install the Superfish adware into their laptops before being sold on the marketplace, it was a really bad day for making decisions. Firstly, the forums have been exploding about the problems that Superfish has caused to the users of Lenovo laptops, bringing such bad publicity to the company. Secondly, the fact that hackers could easily have access to personal account data related to banks has created such a panic that nobody wanted to get near the devices anymore. Additionally, the company has made an effort in gathering Microsoft and McAfee, Lenovo’s two antivirus partners in order to create a removal tool that will change the overall situation for good. Finally, the situation has been solved and the removal tool has been downloadable on the website of the company ever since (for those who need the link, here it is: http://support.lenovo.com/us/en/product_security/superfish_uninstall)
Last but not least, the final move has brought the company to the lowest point: Lenovo has been sued for the Superfsh adware, the suit being filed in California district court, San Diego. The person in cause is named Jessica Bennett, owner of a Lenovo Yoga 2 that has been purchased in late 2014, who has been disturbed by unwanted pop-ups while writing a blog post. She stated that she noticed spam advertisements involving scantily clad women appearing on her client’s website. The advertisement was clearly asking her if the site of the clients has been attacked or hacked. The moment when she found the same advertisement on another website, a very well-known one that never had any problems, she figured out that the problem is not with the websites, but with her PC.
Even if Superfish adware has been pre-installed only on laptops that were sold in September, October, November and December, the lawsuit includes all the clients that bought Lenovo PC since the 1st of January, 2012.
As far as the law is concerned, Lenovo’s acts violate the California Invasion of Privacy Act, Federal Wiretap Act, as well as California trespass and unfair competition statutes.
The main problem with Superfish is that it lets a third-party access the browser data of a user, and makes the security of a client be very easily attacked. The certificates that are found in the middle of the process insert ads into the Web browsers and everything goes from there.
Lenovo is no longer selling laptops that have pre-installed Superfish and the adware will most definitely become history.
Image Source: Core Static World