By timothy from Slashdot's hey-man-you're-s'posed-to-join-the-nsa-first department
An anonymous reader writes It looks like Lenovo has been installing adware onto new consumer computers from the company that activates when taken out of the box for the first time. The adware, named Superfish, is reportedly installed on a number of Lenovo's consumer laptops out of the box. The software injects third-party ads on Google searches and websites without the user's permission.
Another anonymous reader points to this Techspot article
, noting that that it doesn't mention the SSL aspect, but this Lenovo Forum Post, with screen caps, is indicating it may be a man-in-the-middle attack to hijack an SSL connection too. It's too early to tell if this is a hoax or not, but there are multiple forum posts about the Superfish bug being installed on new systems. Another good reason to have your own fresh install disk, and to just drop the drivers onto a USB stick.Also at ZDnet
.Read Replies (0)
By samzenpus from Slashdot's lets-see-what-you-got department
writes with news about Google's reservations to a Justice Department proposal on warrants for electronic data. "Any change in accessing computer data should go through Congress, the search giant said. The search giant submitted public comments earlier this week opposing a Justice Department proposal that would grant judges more leeway in how they can approve search warrants for electronic data. The push to change an arcane federal rule "raises a number of monumental and highly complex constitutional, legal, and geopolitical concerns that should be left to Congress to decide," wrote Richard Salgado, Google's director for law enforcement and information security. The provision, known as Rule 41 of the federal rules of criminal procedure, generally permits judges to grant search warrants only within the bounds of their judicial district. Last year, the Justice Department petitioned a judicial advisory committee to amend the rule to allow judges to approve warrants outside their jurisdictions or in cases where authorities are unsure where a computer is located. Google, in its comments, blasted the desired rule change as overly vague, saying the proposal could authorize remote searches on the data of millions of Americans simultaneously—particularly those who share a network or router—and cautioned it rested on shaky legal footing."Read Replies (0)