Lenovo screws the pooch yet again on the security front
-
Their ShareIT app has the password "12345678"
http://www.theinquirer.net/inquirer/news/2443276/wtf-lenovo-protects-your-backdoor-security-with-a-really-really-really-bad-password -
You cannot just make this shit up. I mean seriously, wow.
-
What's truly shocking is the IT people who just don't care and keep buying it and making excuses about how it isn't that bad, these things are just accidents, it's not on "their" device or whatever.
-
Yeah with a pattern like they've had over the last year, you're asking for trouble if you buy Lenovo. And if you have to, at the very least wipe the machine and start from scratch with your own image.
-
Seriously...
Didn't 12345678 just make it onto the 2015 horrible passwords lists? How could anyone have guessed that was the password... My god, leave Lenovo alone, they aren't making enough money for smart decisions....
-
But you guys, somehow they have lower prices on equivalent hardware! That means it's all worth it.
/s
-
Are you actually kidding?
What a joke.
-
This post is deleted! -
Apparently, there's a patch...
Core Security alerted Lenovo to the vulnerabilities in SHAREit on October 29 last year. Lenovo issued patched versions of SHAREit yesterday.
BBQ Sauce: http://www.itnews.com.au/news/lenovo-used-12345678-as-filesharing-tool-password-414117?eid=3&edate=20160127&utm_source=20160127_PM&utm_medium=newsletter&utm_campaign=daily_newsletterNotified in October... Patch yesterday... 3 months!
-
@aaron said:
I can't believe they left off the trailing 9. Amateurs.
The patch mentioned above probably added the 9
-
@nadnerB said:
Apparently, there's a patch...
Core Security alerted Lenovo to the vulnerabilities in SHAREit on October 29 last year. Lenovo issued patched versions of SHAREit yesterday.
BBQ Sauce: http://www.itnews.com.au/news/lenovo-used-12345678-as-filesharing-tool-password-414117?eid=3&edate=20160127&utm_source=20160127_PM&utm_medium=newsletter&utm_campaign=daily_newsletterNotified in October... Patch yesterday... 3 months!
This is what happens when these things are not open source!! Had this been open source, it would have been fixed in an hour. And the fix would not have been "a new password" but closing the security hole!!
-
-
@Nic said:
And if you have to, at the very least wipe the machine and start from scratch with your own image.
Now, that used to work. Now it does not.
-