Lenovo does it again as LSE component removed after security fears

by
Alex Hern
from Technology | The Guardian on (#HC57)

Chinese company releases firmware update after fears new problem software could, as with Superfish, be used to let hackers access vulnerable computers

Six months after apologising to users for pre-installing security-busting malware Superfish on its consumer laptops, Chinese PC manufacturer Lenovo has again had to remove another pre-installed component from its laptops over security fears.

But this time, the problem software, called the "Lenovo Service Engine (LSE)", is built into the firmware of the laptops themselves, in a low-level operating system called the BIOS, invisible even to Windows. (The BIOS is what is running the screens of white-on-black text seen on many computers as they start up). It launches when the computer is turned on, before Windows loads, and then replaces Microsoft's start-up diagnostics program (which ensures that the system was shut down properly, that the disk isn't corrupted, and that it's safe to launch Windows) with its own.

Continue reading...

rc.img

rc.img

rc.img

a2.img
ach.imga2t.imga2t2.imgmf.gif
External Content
Source RSS or Atom Feed
Feed Location http://feeds.theguardian.com/theguardian/technology/rss
Feed Title Technology | The Guardian
Feed Link https://www.theguardian.com/us/technology
Feed Copyright Guardian News and Media Limited or its affiliated companies. All rights reserved. 2024
Reply 0 comments