Hosted on MSN

Critical UEFI vulnerabilities found in Gigabyte motherboards — allow attackers to bypass Secure Boot and install firmware backdoors

Firmware security research company Binarly has discovered four new vulnerabilities affecting the UEFI (Unified Extensible Firmware Interface) on multiple Gigabyte motherboards. The vulnerabilities ...
TweakTown

Hundreds of GIGABYTE motherboards affected by BIOS vulnerability, updates are available

TL;DR: A critical GIGABYTE motherboard vulnerability allows local attackers to execute code in System Management Mode (SMM), bypassing security on Intel 8th to 11th Gen platforms. GIGABYTE has ...
WeLiveSecurity

When "secure" isn't secure at all: High-impact UEFI vulnerabilities discovered in Lenovo consumer laptops

ESET researchers have discovered and analyzed three vulnerabilities affecting various Lenovo consumer laptop models. The first two of these vulnerabilities – CVE-2021-3971 and CVE-2021-3972 – affect ...
Bleeping Computer

Gigabyte motherboards vulnerable to UEFI malware bypassing Secure Boot

Dozens of Gigabyte motherboard models run on UEFI firmware vulnerable to security issues that allow planting bootkit malware that is invisible to the operating system and can survive reinstalls. The ...
Bleeping Computer

New Lenovo UEFI firmware updates fix Secure Boot bypass flaws

Lenovo is warning of high-severity BIOS flaws that could let attackers bypass Secure Boot on all-in-one desktops using customized Insyde UEFI firmware. Devices confirmed to be impacted are IdeaCentre ...
Morningstar

Tachyum Demonstrates System Management on Prodigy Universal Processor

System Management covers privileged System Management Mode (SMM) level, dedicated System Management Interrupts (SMI) and SMM firmware. In x86-based processors, SMM exists as a special-purpose ...