News lenovo laptops found to have more security flaws

[Technoglitch]

The flaws were first detected in February, with the patch released in April; however IOActive’s findings weren’t released until this week.

They include a vulnerability which would allow both attackers to “bypass signature validation checks and replace trusted Lenovo applications with malicious applications”.

This would put users at risk of ‘drive-by’ attacks, which often target users connected to unsecured public Wi-Fi networks.

The attacker could “exploit this to swap Lenovo’s executables with a malicious executable”, the researchers wrote, as Lenovo does not ‘completely verify’ all the files it downloads as part of any system update.

This “high”-rated flaw affects all ThinkPad, ThinkCenter, and ThinkStation products, along with V, B, K, and E-series machines.


Lenovo Laptops Found To Have More Major Security Flaws

 

[IndianMascot]

They keep initiating new features without understanding the risk and hence we get these kinds of threats.

 

[Technoglitch]

it didnt do the proper R&D..

 

[Sanjeev]

Lenovo is a big brand in laptop section and it is not expected from their side regarding all the flaws and threats faced by the customer so their team must look into this as it may hamper their sales growth

 

[DashMajor]

Oh no, such things are really concerning.

 

[Technoglitch]

yes, that's why it is better to do a study before purchasing any laptops.

 

[DashMajor]

What about those who already purchased the laptop and reading it now.

Only thing remains now that not to use open WiFi and all time the use AV.

 

[Technoglitch]

What about those who already purchased the laptop and reading it now.

Only thing remains now that not to use open WiFi and all time the use AV.

that's why the patches are being released.