ThreatMetrix Labs Report – Superfish Adware – A Closer Look
Posted March 5, 2015
The Superfish adware gained worldwide fame recently when it became public that Lenovo pre-installed this adware on its computers.
Superfish is a malware that injects visual search results (i.e. advertising) into legitimate websites. Technically there is no obvious difference between injecting banking advertisements and injecting banking malware, which is why this incident is so harmful. To make matters worse, Superfish also has a security vulnerability that makes the task for any malware much easier as it enables SSL traffic to be decrypted very easily via the Superfish Certificate Authority (CA).
This report looks at the technical details of this threat and provides some data relating to it from the ThreatMetrix Global Trust Intelligence Network
Download the report here.