Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Lenovo PCs and Laptops seem to have a BIOS level backdoor

Share and discuss recent and important events about malware, privacy, or security. User contributed news. Please do not copy and paste full news stories. Please do quote the essential paragraph of the story. Provide a link to the source.

Lenovo PCs and Laptops seem to have a BIOS level backdoor

Unread postby capnkrunch » August 18th, 2015, 3:15 pm

The Chinese computer and laptop maker, Lenovo is once again in the eye of the storm after users have found that their PCs/Laptops are shipped with a hidden backdoor at the BIOS level. Earlier in the year, it was found that all Lenovo PCs/Laptops are shipped with a spyware called Superfish.

Source: TechWorm
User avatar
capnkrunch
MRU Master
MRU Master
 
Posts: 793
Joined: March 20th, 2015, 6:41 pm
Location: Chicago
Advertisement
Register to Remove

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby NonSuch » August 18th, 2015, 8:33 pm

Well, that certainly looks like a nasty one. This is strike two for Lenovo this year. I would say that at this point they've lost all credibility... no way to pretend that this was just an unfortunate accident. :roll:
User avatar
NonSuch
Administrator
Administrator
 
Posts: 28747
Joined: February 23rd, 2005, 7:08 am
Location: California

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby Gary R » August 19th, 2015, 12:49 am

Yes, Lenovo certainly seem to know how to shoot themselves in the foot, a trait that is becoming all too common for many producers, who seem to have little or no respect for the intelligence of their customers.
User avatar
Gary R
Administrator
Administrator
 
Posts: 25888
Joined: June 28th, 2005, 11:36 am
Location: Yorkshire

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby capnkrunch » August 26th, 2015, 12:55 pm

Turns out this is not only a nuisance but a security hole as well. Lenovo calls this BIOS "feature" Lenovo Service Engine (LSE) and they released a BIOS update to remove or disable it due to security vulnerabilities that were found.
As a result of these findings, Microsoft recently released updated security guidelines (see page 10 of this linked PDF) on how to best implement this Windows BIOS feature. Lenovo’s use of LSE was not consistent with these new guidelines. As a result, LSE is no longer being installed on Lenovo systems. It is strongly recommended that customers update their systems with the new BIOS firmware which disables and or removes this feature.

Source: Lenovo News Releases

The security advisories (Notebook / Desktop) for this vulnerability were released at the end of July.

Because this update isn't pushed out automatically, Lenovo users should check either the news release or the relevant security advisory to see if they are vulnerable, and if so update their BIOS (the security advisories have instructions how to do so). Note that Think-branded PC's do not have the LSE software installed in the BIOS.

Funny quote from the Notebook advisory:
Lenovo Service Engine (LSE) is a utility in the BIOS that helps users download a program called OneKey Optimizer (http://support.lenovo.com/us/en/downloads/ds101321) on certain Lenovo Notebook systems.

Very helpful indeed. :roll:
Last edited by capnkrunch on August 26th, 2015, 1:23 pm, edited 1 time in total.
User avatar
capnkrunch
MRU Master
MRU Master
 
Posts: 793
Joined: March 20th, 2015, 6:41 pm
Location: Chicago

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby Gary R » August 26th, 2015, 1:20 pm

It beggars belief that any producer could be as irresponsible as to provide an easy way into the BIOS.

For years malware writers have looked for a way into a system that would not get removed by a reformat, ie a BIOS level attack. However, because of strict BIOS security they have not been able to find a reliable way to perform one. Now the idiots at Lenovo do the work for them. :roll:
User avatar
Gary R
Administrator
Administrator
 
Posts: 25888
Joined: June 28th, 2005, 11:36 am
Location: Yorkshire

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby NonSuch » August 26th, 2015, 11:25 pm

It would appear that there is no shortage of stupidity at Lenovo these days. Pity... they used to make a nice laptop. Now I wouldn't touch one with the proverbial 10-foot pole.
Will they never learn? Image
User avatar
NonSuch
Administrator
Administrator
 
Posts: 28747
Joined: February 23rd, 2005, 7:08 am
Location: California

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby Gary R » August 27th, 2015, 1:42 am

I certainly wouldn't buy a Lenovo machine, and I'd definitely steer any friends or family away from one if they were thinking of purchasing it.

No doubt the conspiracists will believe this backdoor was put in place at behest of the Chinese Government, and who knows they may be right, but it's more likely to be just stupidity, since so few manufacturers ever think about the security implications of anything they do to "make things easier" for themselves.
User avatar
Gary R
Administrator
Administrator
 
Posts: 25888
Joined: June 28th, 2005, 11:36 am
Location: Yorkshire

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby capnkrunch » August 28th, 2015, 9:01 pm

NonSuch wrote:This is strike two for Lenovo this year.

I would call it strike three but it depends on if you are counting security screw ups or just shady business practices. Around the same times as the Superfish debacle the Android community was upset with Motorola for violating the GPL and not releasing kernel sources. The GPL violations started shortly after Motorola was acquired by Lenovo.

Gary R wrote:I certainly wouldn't buy a Lenovo machine, and I'd definitely steer any friends or family away from one if they were thinking of purchasing it.

My mom and sister recently bought new laptops and when they asked what brand was best I told them anything but Lenovo. :lol:
User avatar
capnkrunch
MRU Master
MRU Master
 
Posts: 793
Joined: March 20th, 2015, 6:41 pm
Location: Chicago

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby Wingman » August 29th, 2015, 9:49 am

I recently bought a little Notebook for my son, for school and it was NOT a Lenova. :)
User avatar
Wingman
Admin/Teacher
Admin/Teacher
 
Posts: 14347
Joined: July 1st, 2008, 1:34 pm
Location: East Coast, USA

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby Gary R » August 29th, 2015, 12:15 pm

I think I see a pattern developing here. ;) :lol:
User avatar
Gary R
Administrator
Administrator
 
Posts: 25888
Joined: June 28th, 2005, 11:36 am
Location: Yorkshire

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby Wingman » August 30th, 2015, 12:51 pm

LeNOva... they put the NO in laptops! :lol:
User avatar
Wingman
Admin/Teacher
Admin/Teacher
 
Posts: 14347
Joined: July 1st, 2008, 1:34 pm
Location: East Coast, USA

Re: Lenovo PCs and Laptops seem to have a BIOS level backdoo

Unread postby Gary R » August 30th, 2015, 1:01 pm

:lol: :lol:

In franglais a crude interpretation of LeNoVa might be considered to be ... the no goto ... which is also pretty appropriate.
User avatar
Gary R
Administrator
Administrator
 
Posts: 25888
Joined: June 28th, 2005, 11:36 am
Location: Yorkshire
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Security News



Who is online

Users browsing this forum: No registered users and 6 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware