Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack
UEFIs booting Windows and Linux devices can be hacked by malicious logo images.
Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack
UEFIs booting Windows and Linux devices can be hacked by malicious logo images.
@arstechnica That is, all #RASPI, too? How many may be used for Firewall/Security purposes… plus all the Linux-based devices? e. g. #Ubiquiti?
@arstechnica I always hated full screen BIOS logos. Add this to the list as of why.
And another nail in the coffin of my trust in Gigabyte to update their BIOS in a timely fashion.
My company issued Lenovo already has a patch, my private desktop rig is at the mercy of a company that never was any good with BIOS updates.
@arstechnica At least, as an upside, it does still require lower level system access than the typical user account. The logo is so trusted I almost wouldn't be surprised if it could me modified from the user level. I doubt it even ever occurred to UEFI manufacturers to actually check that portion of things
I'm wondering if it might be sufficient to disable the full screen boot logo to avoid this? (Though of course if it flashed the firmware completely it would surely set display back to on)
076萌SNS is a social network, courtesy of 076. It runs on GNU social, version 2.0.2-beta0, available under the GNU Affero General Public License.
All 076萌SNS content and data are available under the Creative Commons Attribution 3.0 license.