Home / malware Program:Win32/CompromisedCert.A
First posted on 22 May 2019.
Source: MicrosoftAliases :
There are no other names known for Program:Win32/CompromisedCert.A.
Explanation :
This application is commonly referred to as "Superfish".
The version of Superfish pre-installed on some Lenovo devices is known to install a trusted root certificate for which the private key and password is publically known. This can make your PC vulnerable to SSL/TLS spoofing attacks. It can also allow a malicious hacker to digitally sign binaries so that they are trusted by the affected PC.
The certificate can be exploited using phishing or man-in-the-middle attacks to decrypt, modify, or spoof HTTPS websites, such as banking, social media, or email websites. This could allow a malicious hacker to steal your user names, passwords, and confidential data. They could also carry out transactions without your knowledge, even when it seems like you have a secure browser connection to a website.
Additional information
See the following webpages for more information:
US-CERT: Lenovo Superfish Adware Vulnerable to HTTPS Spoofing Lenovo: Superfish Vulnerability Lenovo: Superfish Uninstall InstructionsLast update 22 May 2019
