{"id":7533,"date":"2015-02-21T17:37:15","date_gmt":"2015-02-21T17:37:15","guid":{"rendered":"http:\/\/aiglesias.com\/?p=7533"},"modified":"2015-02-21T17:39:02","modified_gmt":"2015-02-21T17:39:02","slug":"7533","status":"publish","type":"post","link":"https:\/\/aiglesias.com\/?p=7533","title":{"rendered":"Lenovo y sus equipos infectado por Superfish"},"content":{"rendered":"<div id=\"attachment_5719\" style=\"width: 328px\" class=\"wp-caption aligncenter\"><a href=\"http:\/\/aiglesias.com\/wp-content\/uploads\/2014\/04\/logo_lenovo.jpg\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-5719\" class=\"size-full wp-image-5719\" src=\"http:\/\/aiglesias.com\/wp-content\/uploads\/2014\/04\/logo_lenovo.jpg\" alt=\"logo_lenovo\" width=\"318\" height=\"159\" srcset=\"https:\/\/aiglesias.com\/wp-content\/uploads\/2014\/04\/logo_lenovo.jpg 318w, https:\/\/aiglesias.com\/wp-content\/uploads\/2014\/04\/logo_lenovo-300x150.jpg 300w\" sizes=\"auto, (max-width: 318px) 100vw, 318px\" \/><\/a><p id=\"caption-attachment-5719\" class=\"wp-caption-text\">logo_lenovo<\/p><\/div>\n<p>Hace unos d\u00edas ha saltado la noticia , algunos clientes de <strong>Lenovo<\/strong> acusaban al fabricante de incluir adware en algunos de sus port\u00e1tiles. <!--more-->Pero no un adware cualquiera, sino uno que instalaba un certificado ra\u00edz falso y pon\u00eda en riesgo todas las comunicaciones cifradas del equipo. Desde <strong>Lenovo<\/strong>, en un principio, explicaban que era un software ideado para ayudar a los clientes y mostrarles ofertas, aunque ahora parecen haber cambiado de discurso y en su sitio web <a href=\"http:\/\/support.lenovo.com\/us\/en\/product_security\/superfish\" target=\"_blank\" rel=\"noopener\">hacen referencia<\/a> a <strong>Superfish como una vulnerabilidad alta<\/strong>.<\/p>\n<p>Pero \u00bfc\u00f3mo saber si est\u00e1s afectado si tienes un equipo Lenovo? Ayer te explic\u00e1bamos c\u00f3mo detectarlo aunque alguien ha creado <a href=\"https:\/\/filippo.io\/Badfish\/\" target=\"_blank\" rel=\"noopener\">un sitio web<\/a> que te avisa, con tan s\u00f3lo visitarlo, de si est\u00e1s infectado por Superfish. Desde Lenovo, adem\u00e1s, han publicado una <strong>lista completa de equipos<\/strong> en los que Superfish sol\u00eda instalarse de serie:<\/p>\n<ul>\n<li><strong>G Series<\/strong>: G410, G510, G710, G40-70, G50-70, G40-30, G50-30, G40-45, G50-45<\/li>\n<li><strong>U Series<\/strong>: U330P, U430P, U330Touch, U430Touch, U530Touch<\/li>\n<li><strong>Y Series<\/strong>: Y430P, Y40-70, Y50-70<\/li>\n<li><strong>Z Series<\/strong>: Z40-75, Z50-75, Z40-70, Z50-70<\/li>\n<li><strong>S Series<\/strong>: S310, S410, S40-70, S415, S415Touch, S20-30, S20-30Touch<\/li>\n<li><strong>Flex Series<\/strong>: Flex2 14D, Flex2 15D, Flex2 14, Flex2 15, Flex2 14(BTM), Flex2 15(BTM), Flex 10<\/li>\n<li><strong>MIIX Series<\/strong>: MIIX2-8, MIIX2-10, MIIX2-11<\/li>\n<li><strong>YOGA Series<\/strong>: YOGA2Pro-13, YOGA2-13, YOGA2-11BTM, YOGA2-11HSW<\/li>\n<li><strong>E Series<\/strong>: E10-30<\/li>\n<\/ul>\n<p>En mi caso tanto el <strong>G500<\/strong> como el <strong>G500s<\/strong> no han dado positivo<\/p>\n<div id=\"attachment_7535\" style=\"width: 706px\" class=\"wp-caption aligncenter\"><a href=\"http:\/\/aiglesias.com\/wp-content\/uploads\/2015\/02\/superfish.png\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-7535\" class=\"size-full wp-image-7535\" src=\"http:\/\/aiglesias.com\/wp-content\/uploads\/2015\/02\/superfish.png\" alt=\"superfish\" width=\"696\" height=\"580\" srcset=\"https:\/\/aiglesias.com\/wp-content\/uploads\/2015\/02\/superfish.png 696w, https:\/\/aiglesias.com\/wp-content\/uploads\/2015\/02\/superfish-300x250.png 300w, https:\/\/aiglesias.com\/wp-content\/uploads\/2015\/02\/superfish-360x300.png 360w\" sizes=\"auto, (max-width: 696px) 100vw, 696px\" \/><\/a><p id=\"caption-attachment-7535\" class=\"wp-caption-text\">superfish<\/p><\/div>\n<div class=\"caption-img\"><\/div>\n<p class=\"sumario\"><strong>Lenovo<\/strong> reconoce que <strong>Superfish<\/strong> se preinstal\u00f3 en algunos equipos de esta lista desde septiembre a diciembre de 2014<\/p>\n<p>El fabricante insiste en que dejaron de preinstalar <strong>Superfish<\/strong> el pasado mes de enero y han desactivado su activaci\u00f3n para equipos que se hayan comprado con \u00e9l instalado despu\u00e9s de esa fecha. Sin embargo, y dado que este malware se incluy\u00f3 en equipos que se fabricaron de septiembre a diciembre del a\u00f1o pasado, <strong>todav\u00eda puede estar operativo<\/strong> en equipos de la lista que se hayan activado durante ese periodo.<\/p>\n<p>Eso s\u00ed: desde <strong>Lenovo<\/strong> <a href=\"http:\/\/news.lenovo.com\/article_display.cfm?article_id=1929\" target=\"_blank\" rel=\"noopener\">aseguran<\/a> que <strong>Superfish<\/strong> <strong>nunca fue instalado en port\u00e1tiles ThinkPad<\/strong> ni en otros productos de la compa\u00f1\u00eda, como smartphones u ordenadores de escritorio. Tampoco lo utilizaron en ordenadores destinados a empresas o servidores: tan s\u00f3lo en port\u00e1tiles destinados al mercado del consumo.<\/p>\n<p><strong>El problema se ha agravado<\/strong>, ya que <a href=\"http:\/\/blog.erratasec.com\/2015\/02\/extracting-superfish-certificate.html\" target=\"_blank\" rel=\"noopener\">ya han conseguido<\/a> extraer la contrase\u00f1a que cifraba el certificado. \u00bfQu\u00e9 significa esto? : Si alguien consigue la clave privada de dicho certificado, podr\u00eda emitir certificados falsos que los ordenadores Lenovo aceptar\u00e1n sin problemas, es decir, que alguien podr\u00eda hacer ataques MITM a usuarios de Lenovo con relativa facilidad.<\/p>\n<p>Si eres uno de los afectados debes solucionar cuanto antes este problema. Eliminar Superfish desinstal\u00e1ndolo es un primer paso pero <strong>el m\u00e1s importante es deshacerte del certificado ra\u00edz<\/strong> emitido por Superfish Inc. ,<\/p>\n<p><strong>Lenovo<\/strong> ha publicado en su sitio web una <a href=\"http:\/\/support.lenovo.com\/us\/en\/product_security\/superfish_uninstall\" target=\"_blank\" rel=\"noopener\">gu\u00eda paso a paso<\/a> con capturas del proceso.<\/p>\n<p>Hay que reconocer que la gente de <strong>Lenovo<\/strong> se ha tomado el asunto en serio y ha reaccionado r\u00e1pido.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hace unos d\u00edas ha saltado la noticia , algunos clientes de Lenovo acusaban al fabricante de incluir adware en algunos de sus port\u00e1tiles.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[4,1552,2510],"tags":[2856,2848,2844,2846,2842,2845,2847,2843,2819,2821,2817,2814,2820,2822,2818,2815,2816,3304,2850,2851,2849,2840,2841,2835,2837,2836,2838,2839,2813,2823,2825,2824,2826,2827,2829,2828,2830,2854,2855,2853,2852,2833,2831,2834,2832],"class_list":["post-7533","post","type-post","status-publish","format-standard","hentry","category-general","category-lenovo","category-yoga","tag-e10-30","tag-flex-10","tag-flex2-14","tag-flex2-14btm","tag-flex2-14d","tag-flex2-15","tag-flex2-15btm","tag-flex2-15d","tag-g40-30","tag-g40-45","tag-g40-70","tag-g410","tag-g50-30","tag-g50-45","tag-g50-70","tag-g510","tag-g710","tag-lenovo","tag-miix2-10","tag-miix2-11","tag-miix2-8","tag-s20-30","tag-s20-30touch","tag-s310","tag-s40-70","tag-s410","tag-s415","tag-s415touch","tag-superfish","tag-u330p","tag-u330touch","tag-u430p","tag-u430touch","tag-u530touch","tag-y40-70","tag-y430p","tag-y50-70","tag-yoga2-11btm","tag-yoga2-11hsw","tag-yoga2-13","tag-yoga2pro-13","tag-z40-70","tag-z40-75","tag-z50-70","tag-z50-75"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/s1W0Q6-7533","jetpack_sharing_enabled":true,"jetpack_likes_enabled":true,"jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/aiglesias.com\/index.php?rest_route=\/wp\/v2\/posts\/7533","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aiglesias.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aiglesias.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aiglesias.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aiglesias.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=7533"}],"version-history":[{"count":3,"href":"https:\/\/aiglesias.com\/index.php?rest_route=\/wp\/v2\/posts\/7533\/revisions"}],"predecessor-version":[{"id":7538,"href":"https:\/\/aiglesias.com\/index.php?rest_route=\/wp\/v2\/posts\/7533\/revisions\/7538"}],"wp:attachment":[{"href":"https:\/\/aiglesias.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=7533"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aiglesias.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=7533"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aiglesias.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=7533"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}