3 Apprentice
•
15.3K Posts
2
1284
SecureBoot broken on many popular computers
The following was excerpted from Secure Boot is completely broken on 200+ models from 5 big device makers | Ars Technica
In 2012, an industry-wide coalition of hardware and software makers adopted Secure Boot to protect against a long-looming malware security threat that could infect the BIOS firmware that loaded the operating system each time a computer booted up. Built into UEFI, Secure Boot used public-key cryptography to block the loading of any code that wasn’t signed with a pre-approved digital signature.
On Thursday, researchers from security firm Binarly revealed that Secure Boot is completely compromised on more than 200 device models sold by Acer, Dell, Gigabyte, Intel, and Supermicro. The cause: a cryptographic key underpinning Secure Boot on those models that was compromised in 2022.
See the article (link above) for a list of affected models.
----------------------------------
See also: PKfail Secure Boot bypass lets attackers install UEFI malware (bleepingcomputer.com)
DELL-Nat M
Community Manager
Community Manager
•
2.7K Posts
0
August 12th, 2024 12:57
Dell Technologies is aware of the Pkfail vulnerability reported by Binarly that may affect a small number of consumer PCs. BIOS updates for potentially impacted devices are in progress.
tikmokf5d6ac
1 Rookie
1 Rookie
•
1 Message
0
July 27th, 2024 02:11
The link only lists the alienwares, here is a "complete" list:
https://github.com/binarly-io/Vulnerability-REsearch/blob/main/PKfail/BRLY-2024-005.md
DellManYesIAm
1 Rookie
1 Rookie
•
8 Posts
0
July 30th, 2024 11:40
@tikmokf5d6ac My Inspiron was not listed on that list although running the compromised key detection script returns TRUE (System using Compromised Keys).
Binarly has added their research to a Git Hub page with a Powershell Script to test for the affected Keys on Windows or Linux.
That page is:
https://github.com/binarly-io/Vulnerability-REsearch/blob/main/PKfail/BRLY-2024-005.md
(edited)
RoHe
10 Elder
10 Elder
•
44.4K Posts
0
July 30th, 2024 19:44
Just keep in mind that script is only looking for certain specific keys.
Systems may have a key that tests false using the script but have a "valid" key that was stolen from the online database with its 4-digit password. So there are at least two separate ways a PC could be compromised.
tom_mai78101
1 Rookie
1 Rookie
•
10 Posts
0
July 30th, 2024 23:10
My laptop, Alienware 15 R4, is on that list. I'm out of warranty, and I'm on Windows 11, which is currently unsupported by Dell.
I don't know what to do about it.
RoHe
10 Elder
10 Elder
•
44.4K Posts
0
July 31st, 2024 01:24
@tom_mai78101 - Just sit tight.
You don't have to be in warranty to download/install a BIOS update for free.
Check the drivers/download page for your PC model on the Support site regularly to see if there's a new System BIOS update which may deal with the issue.