Slashdot Mirror

← Back to Stories (view on slashdot.org)

Lizard Squad Claims Attack On Lenovo Days After Superfish

Posted by Soulskill on from the some-publicity-is-bad-publicity dept.

Amanda Parker writes with news that hacker group Lizard Squad has claimed responsibility for a defacement of Lenovo's website. This follows last week's revelations that Lenovo installed Superfish adware on consumer laptops, which included a self-signed certificate authority that could have allowed man-in-the-middle attacks. The hackers seemingly replaced the manufacturer's website with images of an unidentified youth, displayed with a song from the Disney film High School Musical playing in the background. Taking to a new Twitter account that has only been active a matter of days, the Lizards also posted emails alleged to be from Lenovo, leading some to speculate that the mail system had been compromised. While some have seen the attack as retaliation for the Superfish bug, it is also possible that Lizard Squad are jumping on the event merely to promote their own hacking services.

6 of 36 comments (clear)

  1. juvenile vandalism by iggymanz · · Score: 5, Insightful

    this is no more noteworthy or significant than vandalizing a billboard

    1. Re:juvenile vandalism by Viol8 · · Score: 3, Insightful

      Quite. Its just the middle class wannabe version of a graffiti tag, with about the same amount of talent required and having the same level of intellectual gravitas.

  2. "Could have allowed"? by gnasher719 · · Score: 5, Informative

    As far as I understand it, this didn't just allow hackers to create a man-in-the-middle attack. Your Lenovo computer with the hardware would actively perform a man-in-the-middle attack against the user to analyse any encrypted traffic to https websites. For example when you enter a credit card number on the website of a reputable company using https, the adware could read what you posted.

    This is plainly unforgivable.

  3. Superfish "bug" ?!?! by Bugler412 · · Score: 3, Insightful

    Since when is a willfully installed piece of adware/spyware a "bug"? Using that term is someone's attempt to pass this off as a coding error when it was actually willfully installed by the OEM in their OS image.

    1. Re:Superfish "bug" ?!?! by krakelohm · · Score: 4, Funny

      I would guess they are using bug in the verb sense, to "conceal a miniature microphone in (a room or telephone) in order to monitor or record someone's conversations.".

      --
      You are all a bunch of idots.
  4. Re:People don't do this anymore? by wed128 · · Score: 3, Insightful

    Don't business's hire competent IT guys?

    In my experience? Yes they do. they also hire a bunch of incompetent ones. its a crap shoot.