US urges removing Superfish program from Lenovo laptops

BOSTON — The U.S. government on Friday advised Lenovo Group Ltd customers to remove “Superfish,” a program pre-installed on some Lenovo laptops, saying it makes users vulnerable to cyberattacks.

The Department of Homeland Security said in an alert that the program makes users vulnerable to a type of cyberattack known as SSL spoofing, in which remote attackers can read encrypted Web traffic, redirect traffic from official websites to spoofs, and perform other attacks.

“Systems that came with the software already installed will continue to be vulnerable until corrective actions have been taken,” the agency said.

Adi Pinhas, chief executive of Palo Alto, California-based Superfish, said in a statement that his company’s software helps users achieve more relevant search results based on images of products viewed. He said the vulnerability was “inadvertently” introduced by Israel-based Komodia, which built the application described in the government notice.

Komodia CEO Barak Weichselbaum declined comment on the vulnerability.

Lenovo apologized late on Friday in a statement for “causing these concerns among our users” and said that it was “exploring every action we can” to address the issues around Superfish, including offering tools to remove the software and certificate.

“We ordered Superfish pre-loads to stop and had server connections shut down in January based on user complaints about the experience. However, we did not know about this potential security vulnerability until yesterday (Thursday),” the Lenovo statement said.

“We recognise that this was our miss, and we will do better in the future. Now we are focused on fixing it,” the company said.

Komodia’s website says it produces a “hijacker” that allows users to view data encrypted with SSL technology.

“The hijacker uses Komodia’s redirector platform to allow you easy access to the data and the ability to modify, redirect, block, and record the data without triggering the target browser’s certification warning,” according to the site.

Marc Rogers, a researcher with CloudFlare, said that means companies which deploy Komodia technology can snoop on web traffic.

“These guys can do everything from just collect a little bit of marketing information, all the way to building a profile on you and spying on your banking connections,” he said. “It’s a very dangerous slope.”

Rogers said that use of Komodia’s technology in other products makes them vulnerable to the same types of attacks as Lenovo’s Superfish.

He said other vulnerable products include two parental filters: One from Komodia known as KeepMyFamilySecure and another from Qustodio.

Komodia’s Weichselbaum said his company was investigating reports of vulnerabilities in KeepMyFamilySecure.

Qustodio CEO Eduardo Cruz Chief Executive said his company’s Windows parental filter was vulnerable and he hoped to push out a fix within a few days.

Lenovo did not disclose how many machines were affected, but said that only machines shipped from September to December of last year had been pre-loaded with the vulnerable software.

Affected Lenovo products include laptops in its Yoga, Flex and MiiX lines as well as its E, G, U, Y and Z series, according to the company’s support website.

source: interaksyon.com

US allows temporary protected status for people coming from Ebola-hit nations

WASHINGTON - The Department of Homeland Security will grant temporary protected status to people from the three West African countries most affected by Ebola who are currently residing in the United States, department officials said on Thursday.

People from Liberia, Guinea, and Sierra Leone arriving in the United States as of Thursday may apply for protection from deportation, as well as for work permits, for 18 months, said a Department of Homeland Security official.

After 18 months, the Secretary of Homeland Security will assess whether the protection should be extended, based on the level of the Ebola epidemic in West Africa.

The move is a response to the Ebola epidemic, which has claimed more than 5,000 lives, mostly in the three West African countries.

In order to prevent a mass migration from West Africa to the United States, nationals from these countries who arrive after Thursday will not be eligible for protected status.

US Citizenship and Immigration Services officials estimate that 8,000 people will be eligible to apply.

"The Ebola response in the United States has been front and center in the United States government at high levels," said a Department of Homeland Security official. "This designation has been part of that constant monitoring, reevaluation and reassessment of the appropriate response."

The United States reserves temporary protected status for people from countries experiencing conditions deemed too dangerous to return to, such as Haiti after the 2010 earthquake.

Unlike other recipients, protected people from West Africa will not be allowed to travel home and then return to the United States, in order to prevent the disease from spreading.

Nationals from the three countries must undergo a background check in order to receive protected status. Those with a criminal history will not be approved, said the Homeland Security official.

source: interaksyon.com

US to levy $35 million fine on Infosys for 'fraudulently' seeking visas for workers

WASHINGTON--The US government plans to punish Indian outsourcing giant Infosys with the largest immigration fine ever for seeking visas fraudulently for workers at big clients in America, the Wall Street Journal reported Tuesday.

Infosys is accused of putting workers on visitor visas, which are much easier and cheaper to obtain than the correct work visas. The fine is expected to be about $35 million, the paper said, quoting people close to the matter.

A probe by the Department of Homeland Security and the State Department concluded that Infosys used easy-to-get B1 visas, which are meant for short business visits, to bring an unknown number of its workers to the United States for long-term stays, the sources were quoted as saying.

The fine will be announced Wednesday, the Journal said.

Infosys would not confirm details of the fine to AFP, but said in a statement earlier this month that it had reserved $35 million, including legal costs, based on talks with the US government over the probe, which was announced in 2011.

An Infosys spokeswoman said on Tuesday that they were "in the process of completing a civil resolution with the (US) government regarding its investigation of visa issues and I-9 documentation errors". She said the resolution had not been finalised.

With the alleged practice, Infosys could undercut competitors in bids for programming, accounting and other work performed for clients, the Journal said.

Infosys is known as an outsourcing company that does India-based computing and other technology services for Western clients, who have included Goldman Sachs Group, Wal-Mart Stores Inc. and Cisco Systems Inc.

But it also features thousands of US-based employees who develop and install software for accounting, logistics and supply-chain management in the retailing, finance and manufacturing sectors, the Journal said.

source: interaksyon.com