https://arstechnica.com/security/2024/07/secure-boot-is-completely-compromised-on-200-models-from-5-big-device-makers/TL;DR:
tce-load -i efitools
sudo mount -t efivarfs efivarfs /sys/firmware/efi/efivars
efi-readvar -v PK
If you see "CN=DO NOT TRUST - AMI Test PK" in your response then you are compromised.
AMI used a 4 letter password to secure the encryption for the AMI Test PK private key which can write firmware to over 200 motherboards
Malicious actors with access to your PC or abusing a supply chain attack can write firmware level viruses to your machine
They could overwrite your bootloader
They can even add their own public keys to your Signature Database so they have permanent backdoor access to your BIOS firmware
There is currently no patch for this
Welcome
FAQ
Downloads
Wiki
