Amid ongoing public backlash over Superfish, Lenovo has said it wants to make the situation better and promised to develop a "concrete plan" to address concerns with "software vulnerabilities".
In an open letter, Lenovo CTO Peter Hortensius said the company is developing a "concrete plan" with "defined actions", he said the options include "creating a cleaner PC image", "working directly with users, privacy/security experts and others to create the right preload strategy quickly" and "assessing the opinions of even our harshest critics in evaluating our products going-forward".
Lenovo got in trouble after it revealed that adware, known as Superfish, was pre-loaded on systems sold by the company. The software injects its own ads on websites as the user browses the web, while also performing a man-in-the-middle attack exposing private data.
Hortensius said the company was quick to communicate customers, partners and industry watchers and influencers, which allowed it to be "better informed and more clear on what is important." He also said the company is "determined to make this situation better, deliver safer and more secure products and help our industry address — and prevent — the kind of vulnerabilities." [sic]
Meanwhile, a proposed class-action lawsuit has been filed by an affected user in the U.S. District Court for the Southern District of California against Lenovo seeking damages for privacy violations.
Earlier in the week, Lenovo released a tool that removes Superfish from affected computers, while anti-virus software, including Microsoft's Windows Defender, has been updated to kill the adware.
You can read the full open letter here.