It was reported on May 6th of yet another security issue for the computer hardware maker Lenovo. To bring everyone up too date, earlier this year, the Super-fish scandal compromised Lenovo’s hardware and allowed Lenovo to serve up customized advertising on the users computer. Now only two months latter, another issue has been discovered. This time it maybe just some after effects of Super-fish, but now it has way more potential to case harm then just serving up ads. The latest vulnerability, allows attackers to create software and have it digitally signed using Lenovo’s certificate authority, causing users to potentially execute malicious software that appears to come from a trusted source.
The company has released a statement and is advising its customers to update their systems.