BIOS Archives

Hot Topics

Introducing Goffloader: A Pure Go Implementation of an In-Memory COFFLoader and PE Loader
The Role of Digital Adoption in Email Deliverability & Security
Demystifying SOC 2 Compliance for Startups: A Simple Guide
Happy Canada Labour Day! / Bonne Fête du Travail Canadienne!
Happy United States Labor Day 2024 / Feliz Fin de Semana del Día del Trabajo de Estados Unidos 2024 / Joyeux Fin de Semaine de la Fête du Travail aux États-Unis 2024

An open padlock on a PC keyboard, with the word “FAIL” superimposed

PKfail: 800+ Major PC Models have Insecure ‘Secure Boot’

Richi Jennings | July 26, 2024 | Binarly, BIOS, BIOS update, Certificate and Key Management, hardware supply chain, key management, Key Management Problem, PKfail, Private Key Management, SB Blogwatch, secure boot, UEFI, UEFI Failing, UEFI firmware, UEFI vulnerabilities, Unified Extensible Firmware Interface (UEFI)

Big BIOS bother: Hundreds of PC models from vendors such as HP, Lenovo, Dell, Intel, Acer and Gigabyte shipped with useless boot protection—using private keys that aren’t private ...

Security Boulevard

A penguin, running towards us, beak wide open and screaming

Linux Vendors Squawk: PATCH NOW — CVSS 9.8 Bootkit Bug in shim.efi

Richi Jennings | February 8, 2024 | BIOS, CVE-2023-40547, Enterprise Linux and Open Source, Linux, open source, Open Source and Software Supply Chain Risks, open source code, Open Source Community, open source components, open source development, Open Source Ecosystem, SB Blogwatch, secure boot, shim, UEFI, UEFI Failing, UEFI vulnerabilities

Snow joke: A Microsoft researcher found it—and it’s somehow Microsoft’s fault ...

Security Boulevard

New Windows/Linux Firmware Attack

Bruce Schneier | December 12, 2023 | BIOS, Exploits, firmware, Linux, Uncategorized, Vulnerabilities, Windows

Interesting attack based on malicious pre-OS logo images: LogoFAIL is a constellation of two dozen newly discovered vulnerabilities that have lurked for years, if not decades, in Unified Extensible Firmware Interfaces responsible ...

Schneier on Security

LEAKED: Intel’s BIOS Source Code — All 6GB of It

Richi Jennings | October 11, 2022 | Alder Lake, BIOS, Boot Guard, GitHub, Insyde, Intel, Key Manifest, LC Future Center, Lenovo, private keys, RISC V is the open source future—not Intel, SB Blogwatch, tpm, UEFI

Source code for the Intel Alder Lake processor EUFI BIOS has gone walkies. 4chan is said to be involved ...

Security Boulevard

Elon Musk Buys Twitter, Forgotten BIOS Updates, T-Shirt Outwits Facial Recognition

Tom Eston | May 2, 2022 | AI, BIOS, Computer Updates, Cybersecurity, Digital Privacy, Elon Musk, Episodes, facial recognition, firmware, Information Security, Infosec, Lenovo, patching, PC, Podcast, Privacy, security, surveillance, technology, Twitter, Weekly Edition

Elon Musk buys Twitter for $44 billion so what does this mean for the privacy and cybersecurity of the platform? More than 100 different Lenovo laptop computers contain firmware-level vulnerabilities which is ...

The Shared Security Show

Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of March 21, 2022

Dylan D'Silva | March 28, 2022 | BIOS, Bug, data, Data breach, Featured Articles, Microsoft Azure, mobile apps, Phishing, VERT News, vulnerability

All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us ...

The State of Security