The Federal Trade Commission has announced a settlement with Lenovo over the 2015 revelation that the company pre-installed malware called "Superfish" on its low-end models, which allowed the company to spy on its customers, and also left those customers vulnerable to attacks from third parties, who could exploit Superfish's weakened security.
The fraud prompted a class-action lawsuit, and sparked further investigations into Lenovo's software pre-installations, revealing yet another malware infection deliberately introduced by the company.
In conjunction with the FTC settlement, 32 state attorneys general have settled with Lenovo for fines totalling $3.5m. The FTC settlement does not involve fines, but puts Lenovo on notice -- any similar malware loading in the future will be subject to significant fines and other punishments.
The FTC implied that Lenovo had installed the malware without fully understanding how it worked, and failed to appreciate the extent to which it would spy on users and weaken their security.
“Everybody in the chain needs to pay attention,” she said. “This happened to be one of the world’s largest computer manufacturers and I think it it sends an important message: If you are going to install these kinds of software, you need to pay attention to what it’s collecting, what you’re telling consumers, and the kinds of risks that it might be creating.”
Ohlhausen also took a moment to connect the dots about the FTC’s reinvigorated mission to protect consumers from tech companies that surreptitiously scrap personal data.
“To put today’s announcement in context, this is the third privacy case that the FTC has announced in the past 30 days,” Ohlhausen said. “The first was against Uber and the second was tax preparation firm TaxSlayer.
“Those of you who follow the FTC can find some common themes from these cases: All of them involve sensitive information, so driver’s license numbers, and other financial information, in the Uber case,” she said. “Social Security numbers and tax information in TaxSlayer. And contents of consumer’s information in today’s case. All of the cases involve conduct that caused or was likely to cause substantial harm to consumers.”
Lenovo Wasn't Paying Attention: 750,000 Laptops Had Spyware
[Nick Lucchesi/Inverse Innovation]
(via Naked Capitalism)
In a new Columbia Law and Economics Working Paper, Columbia Law prof Joshua Mitts uses "stylometry" (previously) to track how market manipulators who publish false information about companies in order to profit from options are able to flush their old identities when they become notorious for misinformation and reboot them under new handles.
When Vancouver tech retailer NCIX went bankrupt, it stopped paying its bills, including the bills for the storage where its servers were being kept; that led to the servers being auctioned off without being wiped first, containing sensitive data -- addresses, phone numbers, credit card numbers, passwords, etc -- for thousands of customers. Also on […]
Jesse writes, "Vancouver tech retailer NCIX was driven into the ground last year (much to the morbid fascination of local techies). Now their fetid corpse is in the news again, after their SQL servers were sold for $1500 at auction without being wiped, containing the personal data – including credit card details – of thousands […]
Gone are the days when you needed to pore over a 400-page physics textbook to learn about weight ratios, aerodynamics, and all of those other STEM concepts that let us take to the skies. Thanks to Force Flyers’ DIY Building Block Drones, you can foster your STEM knowledge as you build and fly your own functional […]
As more companies leverage cloud technology to unite and streamline their operations, the need for capable IT pros increases. But, as any IT guru will tell you, demand alone won’t get your foot in the door to this lucrative field. If you want to cash in on the demand and build a thriving IT career, […]
iOS 12 is finally here, which means now is the best time for aspiring developers to throw their hats into the app development game. While app development can be tricky for some, you can take an intuitive, beginner-friendly approach to understanding app creation and Apple’s latest iOS platform with the iOS 12 & Xcode 10 Bootcamp, […]