Menu

Remove Superfish Root Certificate

Dec 6, 2022

Remove Superfish Root Certificate

Superfish

Superfish is an Adware application pre-installed on some Lenovo devices that leaves users vulnerable to man-in-the-middle attacks through the presence of a non-standard root certificate with a compromised private key. Removal of this certificate is recommended to mitigate its potential use for MITM attacks.

Removal

  • Open the MMC (Start > Run > mmc).
  • Go to File > Add / Remove Snap In
  • Double Click Certificates
  • Select Computer Account.
  • Select Local Computer > Finish
  • Click OK to exit the Snap-In window.
  • Click [+] next to Certificates > Trusted Root Certification Authorities > Certificates
  • Locate and select the Superfish Certificate.
  • Right Click and select Delete
  • Click OK to confirm removal of the root certificate.

Related Articles

Trusted Root Intermediate Certificates

Feb 27, 2020, 2:11 AM

This support article is all about Trusted Root Intermediate Certificates, a select service with strict requirements. PKI hierarchies allow you to control the chain of trust in your ecosystem, whether you’re implementing client authentication within an enterprise or deploying secure device identities within a supply chain. GlobalSign supports multiple hierarchy options for more flexible trust management and isolation of control, including dedicated or shared and public or private models. GlobalSign Root Certificates are already distributed in all operating systems, browsers, and mobile devices, meaning that all certificates issued from hierarchies beneath these roots are transparently trusted. For closed ecosystems, where public trust isn’t wanted or allowed, private and dedicated customer roots and intermediates are issued.

Read More

Root & Intermediate Certificate Bundles

Mar 9, 2020, 2:50 PM

Some Apache and Java based applications require the Root & Intermediate certificates to be bundled in a single file. You can create a certificate bundle by opening a plain text editor (notepad, gedit, etc) and pasting in the text of the root certificate and the text of the intermediate certificate. The order they go in depends on the type of server you are running. Nginx for example concatenates all certificates in one file beginning with the server certificate.

Read More

GlobalSign Qualified Production and Sample Certificates

Mar 10, 2020, 10:24 AM

This support article lists down the Qualified Production Certificate and Qualified Sample Certificate. Qualified certificates can only be issued by a Qualified Trust Service Provider (QTSP) recognized under eIDAS. GlobalSign is recognized across all EU and EEA countries as a QTSP and has undergone the appropriate eIDAS conformity assessments in order to be able to provide qualified certificates for website authentication and electronic seals. All certificates, signatures, and seals are compliant with EU regulations and local signing standards.

Read More

GlobalSign System Alerts

View recent system alerts.

View Alerts

Atlas Discovery

Scan your endpoints to locate all of your Certificates.

Sign Up

SSL Configuration Test

Check your certificate installation for SSL issues and vulnerabilities.

Contact Support