Eclypsium found that Gigabyte’s firmware updater downloads code to the user’s system without proper authentication.
Researchers at cybersecurity firm Eclypsium have discovered a vulnerability in Gigabyte firmware that puts 271 motherboards at risk of exploitation, the company revealed in aThe firm assessed Gigabyte’s firmware update code and found its implementation to be unsafe and vulnerable to attacks.
The firmware update code launches a program that connects to the Internet after every restart to check and download the latest firmware for the motherboard. Moreover, the updater program resides in Gigabyte’s motherboard firmware, making it difficult for users to disable it.http://mb.download.gigabyte.com/FileList/Swhttp/LiveUpdate4https://software-nas/Swhttp/LiveUpdate4
Eclypsium found that the updater downloads code to the user’s system without proper authentication, including a lack of any cryptographic digital signature verification or other validation methods.The firm also found that the updater could download firmware updates from a NAS device on a local network, which is concerning as malicious actors can spoof the NAS device to infect the system with spyware.
The firm advises that users de-activate the “APP Center Download & Install” feature inside the motherboard’s firmware, implement a BIOS-level password, and block the three sites the updater pings.
South Africa Latest News, South Africa Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
We can’t even get past the security gate at clinics, say Joburg’s homelessLesbian women and homeless people detail their struggle accessing health services in the public sector.
Read more »
We can’t even get past the security gate at clinics, say Joburg’s homelessLesbian women and homeless people detail their struggle accessing health services in the public sector.
Read more »
OR Tambo declared ‘safe’ after evacuation for unspecified security scareOR Tambo declared 'safe' after evacuation for unspecified security scare
Read more »
UPDATE: OR Tambo airport declared safe by security cluster following evacuation | The CitizenThe security cluster has declared the OR Tambo International Airport safe following evacuations from its domestic arrivals sections. 🛬 Read all about it on TheCitizenNews
Read more »
Police offer R50k to solve murder of son of Ramaphosa’s security bossThe police have offered a R50,000 reward for information that will help solve the murder of Warren Rhoode, the son of President Cyril Ramaphosa's security boss Maj-Gen Wally Rhoode.
Read more »
Police offer R50k to solve murder of son of Ramaphosa’s security bossPolice offer R50k to solve murder of son of Ramaphosa’s security boss: The police have offered a R50,000 reward for information that will help solve the murder of Warren Rhoode, the son of President Cyril Ramaphosa's security boss Maj-Gen Wally Rhoode.
Read more »