Lenovo is still recovering from the Superfish scandal, and now the company is caught up in another mess. IOActive Lab issued a new report recently that exposed a major security flaw in Lenovo computers that could have let cybercriminals install malware on your computer.
"Local and potentially remote attackers can bypass signature validation checks and replace trusted Lenovo applications with malicious applications," said the advisory.
The flaw is in Lenovo's System Update software and could give hackers the ability to access your computer like a system update. They could use this access to run code and install malicious software.