Researchers say they have found evidence that attackers have exploited a security vulnerability in Superfish adware and a slew of other programs. Other programs also rely on the same code library created by Israeli company Komodia to circumvent Web encryption with a proxy. The proxy does not properly validate certificates, letting attackers create totally bogus certificates of their own to mimic legitimate ones used by banks’ online access. Lenovo has acknowledged that Superfish poses a security threat to customers, and has released a tool to eradicate the software.”]
Source: https://www.csoonline.com/article/2889921/researchers-uncover-signs-of-superfish-style-attacks.html