ThreatMetrix Labs Report – Superfish Adware – A Closer Look

Posted March 5, 2015

The Superfish adware gained worldwide fame recently when it became public that Lenovo pre-installed this adware on its computers.

Superfish is a malware that injects visual search results (i.e. advertising) into legitimate websites. Technically there is no obvious difference between injecting banking advertisements and injecting banking malware, which is why this incident is so harmful. To make matters worse, Superfish also has a security vulnerability that makes the task for any malware much easier as it enables SSL traffic to be decrypted very easily via the Superfish Certificate Authority (CA).

This report looks at the technical details of this threat and provides some data relating to it from the ThreatMetrix Global Trust Intelligence Network

Download the report here.

Andreas Baumhof

Andreas Baumhof

Chief Technology Officer, ThreatMetrix

close btn