Tonight on GeekNights, we discuss Lenovo's egregious violation of trust in bundling ad-inserting SSL-attacking malware with their computers. The malware included a SuperFish self-signed SSL certificate allowing straight-up man-in-the-middle attacks, complete with the now-known password "komodia". Even better, "komodia" is an obvious reference to the Komodia Redirector Framework, a ready-made SSL manipulation tool. EVEN BETTER, the Komodia site is now down under the load (and a claimed DDOS). The US Department of Homeland Security has gotten involved, at least one lawsuit has begun against Lenovo, and companies like Microsoft and McAfee have added SuperFish to their antivirus software. We humbly suggest that you never trust Lenovo hardware ever again.
In other news, Rym and Scott lost some money in a bad bet regarding Apple and OSX's Gatekeeper back in 2012, Waze is angering NIMBY Luddites by better utilizing public roads, and the US government move a tiny step closer to actually doing something resembling the right thing regarding Net Neutrality.