Los Angeles, CA: The Department of Homeland Security has issued an alert regarding Lenovo computers installed with Superfish software, stating the software makes users vulnerable to a type of cyber attack known as SSL spoofing.
The US government has advised Lenovo customers to remove a "Superfish," saying it makes users vulnerable to cyberattacks.
SSL spoofing involves remote attackers reading encrypted web traffic, redirecting traffic from official websites to spoofs, and performing other types of attacks.
"Systems that came with the software already installed will continue to be vulnerable until corrective actions have been taken," the agency said.
Lenovo did not disclose how many machines were affected, but said that only machines shipped from September to December of last year had been pre-loaded with the Superfish software.
Affected Lenovo products include laptops in its Yoga, Flex and MiiX lines as well as its E, G, U, Y and Z series, according to the company's support website.
