Η Lenovo in a statement on its website recommends that users uninstall the Accelerator app, which is installed by default on laptops running Windows 10.
Lenovo published the 31 May Advisory on the same day that Duo Security Security researchers published a large-scale report in which they decided to test the security of various updaters of drivers pre-installed on systems of different companies.
Duo experts tested laptops from Acer, Asus, Dell, Hewlett-Packard (HP), and Lenovo, and found that they were all using applications that were vulnerable to Mit-the-middle attacks.
For Lenovo, the researchers tested the Lenovo Solution Center and Lenovo Update Agent applications. For specific applications and for the above companies you can read the publication
Acer, Asus, Dell, HP and Lenovo bloatware research
But as you can see, Lenovo's application, Accelerator, is not so much safes. It is an application used to speed up the launch of other Lenovo applications.
From Lenovo's advisory, it appears that during testing of Duo, researcher Mikhail Davidov discovered a vulnerability and reported it to company.
According to Davidov's discovery, this application also exposes users to MITM attacks every time it "asks" Lenovo servers if there are any new updates.
So the company instead of trying to correct the application as it did with Lenovo Solution Center decided to withdraw it completely.
Lenovo advises its customers to uninstall Lenovo Accelerator from "Applications and Features" in Windows 10. By selecting the Lenovo Accelerator application click on "Uninstall".
Below is a list of Lenovo computers that Lenovo Accelerator is installed in Windows 10.
