LastPass Superfish Checker

News broke on Wednesday, February 18th that Lenovo devices had shipped with adware that may compromise secure connections to websites and leave sensitive consumer information exposed. Learn more about the Superfish vulnerability on our blog.

Are you impacted by Superfish?

If you’re affected by Superfish, you must first uninstall the program:

  • Click the Windows Start button
  • Search uninstall program
  • Launch uninstall program
  • Right-click on Superfish Inc VisualDiscovery and select Uninstall
  • If prompted for administrator password, enter or provide confirmation

Then you must uninstall the certificates as well:

  • Click the Windows Start button
  • Type certmgr.msc into the Search box
  • Click the certmgr.msc Program to launch it
  • If prompted for administrator password, enter the password or provide confirmation
  • Click on Trusted Root Certification Authorities
  • Open Certificates
  • Look for certificates mentioning Superfish Inc.
  • Right-click on any Superfish Inc certificates and delete
  • Restart your browser and return to this page to see you are safe

Firefox & Thunderbird Users:

  • Open Firefox
  • Click the menu in the top right and select "Options" or open the Tools menu > Options
  • Click the Advanced tab
  • Click "View Certificates"
  • Scroll through until you see Superfish Inc
  • Click the Superfish, Inc - Software Security Device option
  • Press "Delete or Distrust"
  • Confirm it shows "Superfish Inc" and press OK

Once your system is clean:

  • Download LastPass to start managing your passwords:
  • Run the Security Check (from the Tools menu in your LastPass browser extension).
  • Use Auto-Password Change to instantly update weak or duplicate passwords.
  • Update other weak and duplicate passwords with the LastPass password generator.
  • Update passwords for critical websites like email, banking, and social networks

Share with Facebook Share with Twitter