WelcomeWelcome | FAQFAQ | DownloadsDownloads | WikiWiki

Author Topic: Secure Boot is completely broken on 200+ models from 5 big device makers  (Read 363 times)

Offline CardealRusso

  • Full Member
  • ***
  • Posts: 181
https://arstechnica.com/security/2024/07/secure-boot-is-completely-compromised-on-200-models-from-5-big-device-makers/

TL;DR:
Code: [Select]
tce-load -i efitools
sudo mount -t efivarfs efivarfs /sys/firmware/efi/efivars
efi-readvar -v PK

If you see "CN=DO NOT TRUST - AMI Test PK" in your response then you are compromised.

Quote
AMI used a 4 letter password to secure the encryption for the AMI Test PK private key which can write firmware to over 200 motherboards
Malicious actors with access to your PC or abusing a supply chain attack can write firmware level viruses to your machine
They could overwrite your bootloader
They can even add their own public keys to your Signature Database so they have permanent backdoor access to your BIOS firmware
There is currently no patch for this
« Last Edit: July 29, 2024, 02:02:54 PM by CardealRusso »