BIOS update Archives

An open padlock on a PC keyboard, with the word “FAIL” superimposed

PKfail: 800+ Major PC Models have Insecure ‘Secure Boot’

Richi Jennings | July 26, 2024 | Binarly, BIOS, BIOS update, Certificate and Key Management, hardware supply chain, key management, Key Management Problem, PKfail, Private Key Management, SB Blogwatch, secure boot, UEFI, UEFI Failing, UEFI firmware, UEFI vulnerabilities, Unified Extensible Firmware Interface (UEFI)

Big BIOS bother: Hundreds of PC models from vendors such as HP, Lenovo, Dell, Intel, Acer and Gigabyte shipped with useless boot protection—using private keys that aren’t private ...

Security Boulevard

Dell BIOSConnect Flaws Show Over-the-Air Risks

Teri Robinson | June 25, 2021 | BIOS update, certificate authorities, Dell, over-the-air attack, Privilege Escalation

Because tech vendors have turned to over-the-air updates – the idea is to not give their customers any excuses for not keeping firmware current – Eclypsium’s discovery of a chain of four ...

Security Boulevard

Screwed Drivers: Windows Third-Party Device Code is Huge Mess

Richi Jennings | August 12, 2019 | BIOS update, Cybersecurity, Drivers Update, firmware, Information Security, Malware, SB Blogwatch, security, Security News, UEFI, Windows

Many Windows drivers permit malware to access anything, subverting controls that separate user space from the kernel ...

Security Boulevard

Intel Investigating Reboots Caused by CPU Firmware Patches

Lucian Constantin | January 14, 2018 | BIOS update, CPU microcode, firmware patch, Intel, Spectre, system instability, system reboot, UEFI, vulnerability

The CPU crisis continues. After Windows and Ubuntu patches for the Meltdown and Spectre flaws caused problems for some users, Intel is now investigating reports that its CPU firmware updates are triggering ...

Security Boulevard

team, enterprise, remediation response crisis

Dangerous Intel Chip Flaw Patches Becoming Available

Lucian Constantin | November 24, 2017 | BIOS update, firmware update, Intel Management Engine, Intel ME, patch, Remote Code Execution, samba, SMBv1, vulnerability

Some computer manufacturers have started releasing patches for eight serious vulnerabilities in Intel processors or they have outlined firmware update plans for vulnerable models. Acer, Dell, Fujitsu, Hewlett Packard Enterprise (HPE), Lenovo, ...