时间:2025-11-22 10:44:25 来源:网络整理编辑:百科
Lenovo has settled with the Federal Trade Commission (FTC) and 32 states over charges related to mal
Lenovo has settled with the Federal Trade Commission (FTC) and 32 states over charges related to malicious Superfish adware that came pre-installed on laptops from Aug. 2014 to Feb. 2015 — but the company still won't admit it did anything wrong.
The Chinese computer maker was found to be shipping computers with Superfish adware, a program called VisualDiscovery, back in Feb. 2015. The company was hit with consumer backlash and the Department of Homeland Security even advised users to delete the software after the initial discovery of the security breach, but this settlement is the first concrete consequence for putting the personal information of users in danger.
Lenovo agreed to pay a fine of $3.5 million and will implement a comprehensive security program for "most consumer software" preloaded on its computers for the next 20 years, which will be subject to audit. Lenovo will also be required to get consumers’ affirmative consent before pre-installing software like this on its computers going forward.
The major concern for the researchers who discovered the security flaws back in 2015 was that the program broke HTTPS connections, exposing users to potentially malicious websites and attacks by hackers when they visited otherwise secure sites online. The FTC also claims that the adware was able to access users' personal data, but none of that data was ever sent to Superfish.
Lenovo isn't totally owning up to the charges, however. The company "disagrees with allegations contained in these complaints," according to a statement — even though Lenovo CTO Peter Hortensius admitted to Mashabletwo years ago that the adware created a security vulnerability for users.
The company insists that there have been no incidents where anyone actually took advantage of the vulnerabilities, and that its response to beef up its security and limit the amount of bloatware it preloads onto PCs afterwards was sufficient.
By settling, Lenovo gets to close the the controversy with little more than a slap on the wrist. The Superfish adware saga might not have led to anyone's data being stolen — but it did expose what computer makers can get away with when they put your data at risk.
TopicsCybersecurityLenovo
You will love/hate Cards Against Humanity's new fortune cookies2025-11-22 10:24
Take a walk through mesmerizing photos of Hong Kong's NFT art fair2025-11-22 09:54
Aaron Sorkin's 'Being the Ricardos' is fine enough, but never dazzles: Review2025-11-22 09:52
Meta, Facebook, Instagram, and the metaverse: super apps suck2025-11-22 09:48
The five guys who climbed Australia's highest mountain, in swimwear2025-11-22 09:15
How to find out which Mac, Windows, or Chrome operating system you have2025-11-22 08:51
Alfa Romeo's Tonale hybrid SUV comes with an NFT2025-11-22 08:43
Scientists find landmark treaty spares a stunning 443 million Americans from skin cancer2025-11-22 08:22
Tesla's rumored P100D could make Ludicrous mode even more Ludicrous2025-11-22 08:16
How to use Widgetsmith to create prettier iPhone widgets2025-11-22 08:08
Over 82,000 evacuate as Blue Cut fire rapidly spreads in southern California2025-11-22 10:22
Netflix adds short clips feature for kids, because everything is TikTok now2025-11-22 10:10
Fierce cyclone deluges the West Coast, satellite footage shows2025-11-22 09:54
Tesla cars are getting Sonic, TikTok, and more in a festive holiday update2025-11-22 09:28
Early Apple2025-11-22 09:21
It cost 'The Office' $40,000 to make this iconic music moment happen2025-11-22 09:21
NASA's Perseverance rover beamed back beautiful landscape views of Mars2025-11-22 09:09
Hertz orders 100,000 Teslas to build the largest EV rental fleet in the U.S.2025-11-22 09:09
Olympics official on Rio's green diving pool: 'Chemistry is not an exact science'2025-11-22 09:01
Alfa Romeo's Tonale hybrid SUV comes with an NFT2025-11-22 08:24
