Intel and MSI face security concerns after massive data breach

May 11, 2023 at 08:01 PM

•

1 min read

TL;DR Summary

The leak of MSI's private encryption keys, including the signing key used to digitally sign firmware updates, has raised concerns of devastating supply chain attacks that could inject malicious updates that are trusted by a huge base of end-user devices. Security researchers warn that MSI doesn't have an automated patching process and doesn't provide the same kind of key revocation capabilities as larger hardware makers, making it difficult to block the leaked keys.

Topics:technology #cybersecurity #encryption-keys #firmware-updates #msi #ransomware #supply-chain-attack

Share this article

Leak of MSI UEFI Signing Keys Stokes Fears of 'Doomsday' Supply Chain Attack Slashdot
Intel Boot Guard keys leak as a result of MSI data breach — what this means for you Tom's Guide
Data breach alert: Intel confronts massive security incident Ghacks
A massive data breach has left Intel scrambling for solutions Digital Trends
Intel investigating major security leak KitGuru

Reading Insights

Total Reads

Unique Readers

Time Saved

1 min

vs 2 min read

Condensed

77%

323 → 73 words

Want the full story? Read the original article

Read on Slashdot

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights