I pointed out earlier that it was fairly astounding that Superfish was
basically remaining mostly quiet on the whole controversy over its software.
If you've been under a rock, earlier this week, the security community pointed
out how Superfish's software (installed by default on certain Lenovo laptops)
created a massive security vulnerability. Superfish itself is adware, but
that's the least of the problems. The software doesn't track your behavior
like other adware, but instead tries to insert other buying options when
you're viewing images of certain products. It tries to find the same or
similar products that you can buy for less and tell you about them. I could
see how that might be interesting for _some people_ on _some shopping sites_
if they _chose_ to use the software. But, by being a default bloatware install
on Lenovo laptops, there was no choice. Furthermore, it apparently was trying
to do this on _every_ website. And that's where the real problem came in.
Because many websites these days are encrypted via HTTPS (to better protect
privacy), Superfish teamed up with a sneaky company named Komodia, to install
a really nasty and poorly implemented "trick." It installed ...