Yep, I was just thinking the same thing. Pretty horrifying to read "The SDK has ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

markbnj on Feb 19, 2015 | parent | context | favorite | on: Extracting the SuperFish certificate

Yep, I was just thinking the same thing. Pretty horrifying to read "The SDK has anti virus capabilities and each compiled version generates a totally new version" and realize that a major PC OEM knowingly installed this on new systems. It's malware in every sense of the word.

PhantomGremlin on Feb 20, 2015 [–]

No honor among criminals. They also:

   Actively remove global proxy injected JS by
   either removing the JS from HTML or blocking
   the requests to the ad server.

So if someone else injects JS, they remove it before injecting their own.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact