The US Department of Homeland Security (DHS) recommended Lenovo customers remove the Superfish adware from their computers and laptops. The Chinese electronics company installed the software on machines beginning in 2010 until January 2015, and Lenovo is no longer installing it on consumer products.
Despite Lenovo saying there were no cybersecurity issues, the National Cyber Awareness System said customers are vulnerable to SSL spoofing attacks. "Systems that came with the software already installed will continue to be vulnerable until corrective actions have been taken," the DHS said in a statement published by Reuters.
"We should have known about this sooner," said Brion Tingler, Lenovo spokesman, in a statement to Reuters. "And if we could go back, we never would have installed this software on our machines. But we can't, so we are dealing with this head on."
The company said PCs and laptops shipped between September and December last year had Superfish pre-loaded - and Tingler said he's unsure why the DHS believes it was installed as far back as 2010.
The "severe" vulnerability puts the Lenovo Yoga, Flex and MiiX lines at risk - along with E, G, U, Y and Z series of Lenovo products.
The biggest ransomware attacks in recent history and the groups behind them
Xbox used Ninja Theory's 'Senua' unveil at Xbox Games Showcase to market Ninja Theory, not the game
This Nissan Skyline was turned into a gaming PC and racing rig for Forza Horizon 6
NVIDIA's RTX Remix Skills lets modders without coding skills use AI agents to help remaster classic PC games
Lenovo's new Tab Plus Gen 2 tablet has a built-in Bluetooth speaker
Microsoft launches new Snapdragon X2-powered Surface laptops, teases RTX Spark model
Sandisk's new 8TB SSD built for the PS5 and PS5 Pro costs $3,000
Nintendo is locking Switch 2 multi-language sales in Japan behind 50 hours of Switch playtime to stop scalpers
Epic reveals gen AI is used to make new Fortnite concept designs
Lenovo Yoga Pro 9n with NVIDIA RTX Spark and haptic trackpad pictured ahead of fall launch
AMD's Zen 6 Olympic Ridge reportedly drops the iGPU entirely in exchange for a dedicated NPU
Speed Racer (2008) 4K Ultra HD Blu-ray Review: a stunning remaster of the cult classic
MOAIPLAY ORA PRO G1 850W ATX 3.1 PSU Review: high efficiency and 10-year warranty for $119.99
Navman MiVue Smart True 4K Surround Dashcam Review - Seeing In All Directions At Once
IQUNIX Magi96 Pro Aluminum Low Profile Mechanical Keyboard Review - Premium Build, Satisfying Sound
Asetek Forte S-Series Racing Simulator Bundle Review
Razer Pro Type Ergo Wireless Split Ergonomic Keyboard Review - Built for Comfort and Support
ASUS ROG Strix Morph 96 Wireless Gaming Keyboard Review - Great Performance, More Affordable
SAPPHIRE Radeon RX 9070 GRE PULSE OC Review - A New 1440p Challenger Has Arrived
NZXT H6 RGB+ Compact Dual-Chamber Chassis Review
ASRock Radeon RX 9070 GRE Steel Legend Review - The RDNA 4 Mid-Range Reshuffle
I read the Windows Backup app screen carefully, and it does not back up what most people think
Low Sound Volume on Windows 11? How to fix audio issues and restore normal volume
8 Critical Warning Signs You Should Never Ignore in Windows 11
This Windows security feature protects Documents from ransomware, but it is off by default
Windows 11 already has a voice typing tool, and it is the one most people are not using
Quick Assist is the only remote-support tool I open when a relative calls about their PC
The PowerToys utilities I keep enabled on every Windows 11 PC, and the ones I turned off within a week
TweakTown's Best of Computex 2026 Awards - The Best Hardware, Gaming Gear, and AI
Phison E37T SSD Controller Exclusive Preview - The Fastest DRAMless SSD Platform Yet
USB Ports Not Working in Windows 11? Try These Fixes