Bleeping Computer

LogoFAIL attack can install UEFI bootkits through bootup logos

Multiple security vulnerabilities collectively named LogoFAIL affect image-parsing components in the UEFI code from various vendors. Researchers warn that they could be exploited to hijack the ...
Dark Reading

Intel Processor UEFI Source Code Leaked

Intel has confirmed the leak of the Unified Extensible Firmware Interface (UEFI) BIOS of Alder Lake, the company's code name for its latest processor — the 12th generation Intel Core processor — which ...
ZDNet

Untested buggy UEFI heads for prime-time

BIOS, the archaic firmware that sits between a computer's hardware and the operating system, is set to be replaced by the Unified Extensible Firmware Interface (UEFI). The move is intended to improve ...
Electronic Design

The Migration from Legacy BIOS to UEFI Firmware

To understand the transition from legacy BIOS to UEFI firmware, it’s best to begin with a review of a decades-old system—the 1983 IBM-compatible PC—and continue with a study of its successor ...
CSOonline

Sophisticated UEFI rootkit of Chinese origin shows up again in the wild after 3 years

A sophisticated rootkit that’s able to insert itself into the lowest levels of Windows computers — the motherboard firmware — has been making victims since 2020 after disappearing from the radar for ...
telecom.economictimes.indiatimes

Intel's proprietary source code leaked, company confirms

Chip-maker Intel has reportedly confirmed that its 'Alder Lake BIOS' source code has been leaked by a third-party on anonymous imageboard website 4chan and Microsoft-owned open source developer ...
Ars Technica

Where does the BIOS or UEFI load a CPU microcode update?

My understanding was that a CPU microcode update is stored in non-volatile memory on the motherboard and is loaded by the BIOS or UEFI into volatile memory on the CPU during boot. And because the ...
eTeknix

Intel Turns Alder Lake UEFI/BIOS Source Code Theft into a Hugely Positive Move!

Earlier this week, information appeared online suggesting that the source code for Intel’s Alder Lake desktop processors had been stolen and published online. – This was clearly quite an alarming ...
PC World

Firmware exploit can defeat new Windows security features on Lenovo ThinkPads

A newly released exploit can disable the write protection of critical firmware areas in Lenovo ThinkPads and possibly laptops from other vendors as well. Many new Windows security features, like ...
Wired

A China-Linked Group Repurposed Hacking Team’s Stealthy Spyware

When a hacking organization’s secret tools are stolen and dumped online for anyone to pick up and repurpose, the consequences can roil the globe. Now one new discovery shows how long those effects can ...
TechSpot

AMI BIOS source code and UEFI signing key found on public FTP

The source code and unique UEFI signing test key for firmware developed by American Megatrends Inc. (AMI) has been discovered on an FTP server in Taiwan. What makes the news especially damning is that ...