Here’s something I never thought I’d write. Windows users don’t need to worry about a new security risk. Well, some of them anyway.
Hard coded pword
Anyhoo, here’s the skinny. Lenovo are really stupid and hard coded a password into the fingerprint scanner. That you use to log into the PC. Yes. A password was hard coded into the fingerprint scanner.
Long story short, over 20 Thinkpad models use something called Fingerprint Manager Pro. Lenovo copped to the cock up, saying:
“Sensitive data stored by Lenovo Fingerprint Manager Pro, including users’ Windows logon credentials and fingerprint data, is encrypted using a weak algorithm, contains a hard-coded password, and is accessible to all users with local non-administrative access to the system it is installed in,”
Run the update
The crapware bundling, famously sketchy laptop floggers are begging users to run a new update to sort it – especially if they’re running Windows 8, 8 or 8.1. Users of Windows 10 can relax, for now. MS added their own fingerprint scanning software in that release.
Still, I guess you can relax to some extent if you’re kidnapped and the crims want to get into your laptop. They won’t have to cut your finger off anymore as they can just pull the password out themselves.
Fingerprint Manager Woe,