Yesterday we discovered Lenovo is pre-installing adware on notebooks that uses a “man-in-the-middle” attack to break secure connections on affected laptops to get access to sensitive data and inject advertising. To make things worse, Lenovo installed a weak certificate into the system in a way that means affected users cannot trust any secure connections.