Like many other PC makers, Lenovo installs a number of bloatware applications on its computers that really serve little purpose. Now the company has admitted that its bloatware Accelerator Application will make customers vulnerable to man-in-the-middle attacks. The vulnerability is within the update mechanism which would allow someone in range of your machine to take over and act as a Lenovo server basically pushing anything they want onto your computer.
A vulnerability was identified in the Lenovo Accelerator Application software which could lead to exploitation by an attacker with man-in-the-middle capabilities. The vulnerability resides within the update mechanism where a Lenovo server is queried to identify if application updates are available. The Lenovo Accelerator Application is used to speed up the launch of Lenovo applications and was installed in some notebook and desktop systems preloaded with the Windows 10 operating system.
Lenovo is recommending that all affected users (I would recommend every Lenovo user) uninstall the Accelerator Application immediately. We do a lot of Lenovo reviews here on Techaeris and one of our biggest dings against the software is the inclusion of so much bloatware. I’d recommend every user uninstall needless bloatware programs from any PC maker before doing anything else. Of course you should be cautious on what you uninstall, some of it may be related to how your PC runs and you might need it, be sure to consult a techie friend if you’re unsure.
If you remember some months back, Lenovo also had an issue with some bloatware (spyware) that was preloaded on their machines called Superfish. The Accelerator Application isn’t anything like Superfish but it is certainly a security issue and should be taken off straight away.
Do you own an affected Lenovo machine? Let us know in the comments below or on Twitter, Facebook and Google+.