Just found a mention of PrivDog in this follow-up to the Lenovo/Superfish/Komodia scandal:

From the article:

"Like Komodia’s software, PrivDog installs a root certificate when it’s installed, which it then uses to sign the certificates it intercepts. However, a bug in certain versions of PrivDog cause it to sign all certificates, whether they’re valid or not. Simply put, this means that any certificate your browser sees while PrivDog is installed could be the result of a man-in-the-middle attack, and you’d have no way of knowing."

I don't know if version is vulnerable or not but personally I'd avoid it.
posted by tagawa Staff3 years and 9 months ago Link