Someone could be watching you this very second..
You don’t even know that they are watching you but they are..
Researchers have warned that the Superfish adware allows hackers to pry on what you do online, and it presents itself like a welcome mat for them to walk right past you and gather all your precious information whilst you don’t have the slightest clue.
I’ll show you how you can catch these dangerous Superfish(es) and stop them once and for all .
What the heck is Superfish?
Superfish is an adware which has become more of a vulnerability to your computer.
Other than it injects ads into your internet browser it makes your PC insecure too.
It was first preinstalled by Lenovo on some computers sold between October 2014 and December 2014, but the thing you need to know is that, it’s not just the Lenovo computers that are infected, if you have a Windows computer then there’s a high chance it has already been infected.
Now I know you might be thinking,
“Why would Lenovo or Microsoft put up such a nasty malware in my computer?”
The truth is,
Superfish is like every other software that you have right now in your computer which at its core was meant to place ads in your web browser.
But the problems arise when,
Superfish intercepts encrypted traffic, which then opens up your computer to man-in-the-middle attacks.
Now it doesn’t just end there..
It also intercepts all of your HTTPS connections which is basically the protocol over which data is sent between your browser and the website that you are connected to.
I’ll give you an example
Imagine you and I were pen pals, and we send old fashion written mails between both of us.
The HTTPS connection works the same way as how a post office works but with a little more security with the way they handle the sending of our mails so that it doesn’t get our mails into the wrong hands.
Now here’s where it goes all wrong…
What Superfish does is it goes past the security of the post office and it diverts the address that your mails are sent to me to another address.
This address can be a HTTPS website too to make you think it is secure, but only to find out later it is a trap.
From here onwards, this leads your information to leak and it gives away for the hackers to exploit you using the obtained information in just seconds.
Fake Address, Fake HTTPS Website
A post written by Errata Security shows that any HTTPS certificate, yes that includes even your bank’s website security, which I’ll get into on why it might not be as secure you think, is shit-easy to crack.
Chris Palmer, a security researcher, found out when he visited the Bank of America’s website on a computer with Superfish installed, that the bank’s certificate was signed by none of other than Superfish itself rather than VeriSign.
This easily gives away for prying hackers to use the Superfish certificate to create fake HTTPS websites that can grab your passwords and your bank account details, and even create viruses that are signed to make it look like it is legitimate.
Check and Remove Superfish: 7 steps
Checking for Superfish
It’s pretty easy to see if your computer is affected by any Superfish. 🙂
I have already tested these steps on a few Lenovo computers and it seems to work great and it should work for you too regardless of which Windows version you’re on.
Here’s how you can check if you have any Superfish on your device.
Step 1: Head over to this link and then just wait for 10 seconds until it checks by itself whether if there is any Superfish on your computer or device.
You can also use LastPass’s tool if you have any doubts over this website.
Now if you did find a Good or a No, then you’re pretty much good.
However if you do see a Bad or a Yes then there is Superfish in your computer and you are going to need to remove it.
Getting Rid of Superfish
Step 1: Go ahead and open your Start menu and then search for Uninstall a program. Select it.
Step 2: Now right-click on Superfish Inc VisualDiscovery and then select Uninstall. You’ll have to enter your administrator password.
Step 3: Done? Great! What you need to do next is uninstall the certificates. So head back to the menu and search for certmgr.msc. Then right-click to Run as administrator.
Step 4: Now click on Trusted Root Certification Authorities and then open Certificates.
Step 5: Here you are going to look for any certificates that include Superfish Inc. Once you have found, right-click to Delete them
Step 6: Now all that is left for you to do is just restart your browser and then head back to the link where you checked for the Superfish on your computer to perform another check to see if it has cleared.
That’s it! 😀