Tag

Intel Boot Guard

All articles tagged with #intel boot guard

"Security Breaches Plague Intel and MSI, Raising Supply Chain Attack Concerns"

Originally Published 2 years ago — by Ars Technica

The leak of MSI's private encryption keys, including the signing key used to verify the authenticity of firmware updates, has raised concerns of devastating supply chain attacks. Unlike larger hardware makers, MSI doesn't have an automated patching process or key revocation capabilities, making it difficult to revoke compromised keys. The leak also included a private encryption key used in a version of Intel Boot Guard that MSI distributes to its customers, which could allow attackers to bypass security measures and gain far-reaching access to systems. MSI has yet to issue guidance to its customers.

technology cybersecurity cybersecurity encryption-keys firmware-updates intel-boot-guard msi supply-chain-attack

MSI's Private Code Signing Keys Leaked on Dark Web.

Originally Published 2 years ago — by The Hacker News

Private code signing keys of Taiwanese PC maker MSI have been leaked on the dark web by the threat actors behind the ransomware attack on the company last month. The leaked data includes firmware image signing keys associated with 57 PCs and private signing keys for Intel Boot Guard used on 116 MSI products, which could impact several device vendors, including Intel, Lenovo, and Supermicro. The leak poses significant risks as threat actors could use them to sign malicious updates and other payloads and deploy them on targeted systems without raising any red flags.

technology data-breach-software-security data-breach-software-security firmware-security intel-boot-guard msi private-code-signing-keys ransomware