Hosted on MSN

Critical UEFI vulnerabilities found in Gigabyte motherboards — allow attackers to bypass Secure Boot and install firmware backdoors

Firmware security research company Binarly has discovered four new vulnerabilities affecting the UEFI (Unified Extensible Firmware Interface) on multiple Gigabyte motherboards. The vulnerabilities ...
Bleeping Computer

PKfail Secure Boot bypass remains a significant risk two months later

Roughly nine percent of tested firmware images use non-production cryptographic keys that are publicly known or leaked in data breaches, leaving many Secure Boot devices vulnerable to UEFI bootkit ...
Bleeping Computer

Gigabyte motherboards vulnerable to UEFI malware bypassing Secure Boot

Dozens of Gigabyte motherboard models run on UEFI firmware vulnerable to security issues that allow planting bootkit malware that is invisible to the operating system and can survive reinstalls. The ...
PC World

Hundreds of Gigabyte motherboards vulnerable to Secure Boot attack

Crack open your desktop PC for a second. No rush, I’ll wait. Are you looking in there? Good. Do you see a Gigabyte motherboard? Okay, now peek under the CPU cooler. I’ll wait again. Okay, see that CPU ...
ExtremeTech

Secure Boot Passcode on Many Popular PCs Was Leaked Years Ago

A cyber security research firm has published a shocking report outlining how the Secure Boot feature found on UEFI motherboards was compromised almost two years ago due to its passcode being leaked.
Ars Technica

Secure Boot-neutering PKfail debacle is more prevalent than anyone knew

A supply chain failure that compromises Secure Boot protections on computing devices from across the device-making industry extends to a much larger number of models than previously known, including ...