Year-end is the notebook season due to students who have finished their SAT and college students who are preparing for the new semester. However, some brand name laptops `key loggers` and `spyware` are found in consecutively, consumers are demanding attention.

According to the security industry on Tuesday, key loggers were found in key software (SW) drivers built into 460 models, including the HP notebook series `Elite Book`, `Pro Book` and `Pavilion`.

A key logger is a malicious code that detects the movement of a user`s keyboard or touchpad and seizes valuable information such as an ID, password, account number, and card number. And stores the user`s important data in a non-encrypted state on the computer and transmits the data to the attacker. Samsung laptops also had a controversy over installing key loggers in 2011, when Samsung Electronics directly rebelled. Samsung`s proactive exploration of the key loggers proved to be unfounded, but it can be a big blow to brand value.

A security expert who uses a nickname called Zw Close is at risk of hacking critical data, including account information and credit cards, through his HP notebook touchpad drive `file (Synaptics.sys)` on Wednesday, "He warned.

Meanwhile, the expert informed HP of the problem last month, and the HP Product Security Response Team (PSRT) is aware of the seriousness and is currently providing a driver update patch file through the official site. "The security patch has to be processed as soon as possible," HP said in a statement. "We are constantly improving the security of SW products to provide our customers with safe products."

HP notebooks were found only this year with `Audio driver key loggers (Conexant HD, May)` and `HP Touch-points (Spyware, November)`, revealing product stability and security issues.

The company also unveiled the "Firmware (hardware control and drive SW)" high-risk vulnerability on the 54th printer model, including the notebooks as well as enterprise products, and distributed emergency patch files. HP ranks No. 1 in the global notebook and printer market.

Lenovo, meanwhile, has been working with the Federal Communications Commission (FCC) for 350 years on charges of selling and selling spyware "Super-fish," which collects personal information about users on some notebook models, including the Yoga series from August 2014 to June 2015. He was fined $ 10,000 ($ 3.8 million). This publicly known problem is the analysis of security experts that the impact of the iceberg will be much more serious to actual consumers.

"The way malicious code is installed on a product is caused by the fact that software for security and compatibility testing is mistakenly installed in a commercial product, If you put it in two ways, "he explained.

"Consumers believe in a product brand, but if they install a malicious code, it will be a frustrating situation," he also pointed out. "It`s hard for a manufacturer to figure out all the vulnerabilities through complicated development and production stages. And it is a realistic way to inform consumers."

By
By Lee Gyung Tak kt87@


[ copyright ⓒ The Digitaltimes ]