UEFI Archives

An open padlock on a PC keyboard, with the word “FAIL” superimposed

PKfail: 800+ Major PC Models have Insecure ‘Secure Boot’

Richi Jennings | July 26, 2024 | Binarly, BIOS, BIOS update, Certificate and Key Management, hardware supply chain, key management, Key Management Problem, PKfail, Private Key Management, SB Blogwatch, secure boot, UEFI, UEFI Failing, UEFI firmware, UEFI vulnerabilities, Unified Extensible Firmware Interface (UEFI)

Big BIOS bother: Hundreds of PC models from vendors such as HP, Lenovo, Dell, Intel, Acer and Gigabyte shipped with useless boot protection—using private keys that aren’t private ...

Security Boulevard

A penguin, running towards us, beak wide open and screaming

Linux Vendors Squawk: PATCH NOW — CVSS 9.8 Bootkit Bug in shim.efi

Richi Jennings | February 8, 2024 | BIOS, CVE-2023-40547, Enterprise Linux and Open Source, Linux, open source, Open Source and Software Supply Chain Risks, open source code, Open Source Community, open source components, open source development, Open Source Ecosystem, SB Blogwatch, secure boot, shim, UEFI, UEFI Failing, UEFI vulnerabilities

Snow joke: A Microsoft researcher found it—and it’s somehow Microsoft’s fault ...

Security Boulevard

Microsoft FAIL: ‘BlackLotus’ Bootkit Breaks Secure Boot

Richi Jennings | March 3, 2023 | BlackLotus, bootkit, Malware, Microsoft, secure boot, trojan, UEFI

The BlackLotus malware targets UEFI Secure Boot. For a mere $5000, you too can own it ...

Security Boulevard

LEAKED: Intel’s BIOS Source Code — All 6GB of It

Richi Jennings | October 11, 2022 | Alder Lake, BIOS, Boot Guard, GitHub, Insyde, Intel, Key Manifest, LC Future Center, Lenovo, private keys, RISC V is the open source future—not Intel, SB Blogwatch, tpm, UEFI

Source code for the Intel Alder Lake processor EUFI BIOS has gone walkies. 4chan is said to be involved ...

Security Boulevard

Chinese cybercrime illegal online gambling

MosaicRegressor: ‘Chinese’ UEFI Bootkit Snoops on North Korean Foes

Richi Jennings | October 6, 2020 | bootkit, china, MosaicRegressor, SB Blogwatch, UEFI

Researchers say they’ve found on the second known example of UEFI malware. They’re calling it MosaicRegressor ...

Security Boulevard

Screwed Drivers: Windows Third-Party Device Code is Huge Mess

Richi Jennings | August 12, 2019 | BIOS update, Cybersecurity, Drivers Update, firmware, Information Security, Malware, SB Blogwatch, security, Security News, UEFI, Windows

Many Windows drivers permit malware to access anything, subverting controls that separate user space from the kernel ...

Security Boulevard

Emergency Patch for Zero-Day Vulnerability in Internet Explorer

Lucian Constantin | December 20, 2018 | BMC attack, drive-by download, firmware corruption, Internet Explorer, IPMI, Remote Code Execution, server crash, UEFI, Zero-day Vulnerability

Microsoft has released an unscheduled patch for a remote code execution vulnerability in Internet Explorer that is actively exploited by attackers. Microsoft releases security updates on the second Tuesday of every month—known ...

Security Boulevard

Intel Investigating Reboots Caused by CPU Firmware Patches

Lucian Constantin | January 14, 2018 | BIOS update, CPU microcode, firmware patch, Intel, Spectre, system instability, system reboot, UEFI, vulnerability

The CPU crisis continues. After Windows and Ubuntu patches for the Meltdown and Spectre flaws caused problems for some users, Intel is now investigating reports that its CPU firmware updates are triggering ...

Security Boulevard

Sowbug Cyberespionage Group Hits South America, South Asia

Lucian Constantin | November 7, 2017 | cyberespionage, data exfiltration, data theft, Felismus, firmware, hardware requirement, malware program, processor, secure boot, secure computer, South America, Sowbug, UEFI, Virtualization, Windows 10

Security researchers have identified a cyberespionage group that has been stealing data from policy and diplomatic organizations in South America and South Asia since at least 2015. “While cyberespionage attacks are often ...