.@kennwhite That is an understatement. The @FBI needs to get involved in this immediately.
-
-
That screencap and analysis is thanks to
@fugueish and the Chrome team for digging into this. Much gratitude. -
@kennwhite Is there a writeup somewhere of this?#lazyweb -
@munin@kennwhite@FBI Looks like they misspelled VeriSign, Inc. lol -
@passingthehash@kennwhite I'm still gathering facts, but it'll be on my blog at some point soon. -
@kennwhite This isn't me official; this is me while on leave goofing off instead of going to band rehearsal. :) -
@fugueish@kennwhite yeah, I sorta saw some disjointed convo, but a full story would be nice -
@kennwhite@joeranweiler Utterly disgusted by this. Seriously considering recommending that we return@bitkitteh's new YogaPro2. -
@kennwhite I assume the police are on their way to the Lenovo CEO's house at this moment with an arrest warrant -
Bad news!
#Lenovo is implanting ssl MITM certificate#superfish “@kennwhite: This is a problem.#superfish pic.twitter.com/eGzk6hfQbP” -
@konklone@kennwhite One would hope, but I doubt it. -
@kennwhite Note that they also have a very suspicious "Root Agency" intermediate cert installed. Has no parent CA -
@_coreDump@kennwhite@RessyM can someone explain this in dum-dumb mode -
@practicaltalks@_coreDump@RessyM Lenovo notebooks apparently steal your bank/doctor/dating web data and send it to a 3rd party to monetize -
@_coreDump never ever trust pre-installed certificates… We should know that for ages now -.-'@kennwhite@fo0_ -
@swisstengu heu je pense avant tout au 98% des end-users :) et non au petit cercle d'averti -
-
@swisstengu@kennwhite@fo0_ correct, problem "we" don't include elderly and other non-tech savvy which are exposed w/o consent#superfish -
@_coreDump of course ;).@kennwhite@fo0_
Kenn White
MuninrepeeK eroL
passingthehash
n1tr0g3n
Chris Palmer
Rich Turner
Eric Mill
Chilik Tamir חיליק
Hassan Sultan
Michael A. Rodriguez
Cédric Jeanneret
fo0