A vulnerability in trusted system recovery programs could allow privileged attackers to inject malware directly into the system startup process in Unified Extensible Firmware Interface (UEFI) devices.

First off, a little context. I'm a 30+ year Mac user and I just bought my first PC in decades. I'm no stranger to Windows and Linux, but haven't used them as a desktop OS for about 15 years. My ...

I'm going to start this post by saying something that a lot of people will find surprising. There are a lot of things that I like about UEFI firmware and the UEFI boot process. I think it is an ...

Turns out, allowing direct memory modification is a little risky. When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Add us as a preferred source on ...

These days, bootstrapping a computer is a pretty straight forward process, at least as far as the user is concerned. But in the olden days, one would have to manually flick switches entering ...

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...

We're in the home stretch now. In the first post of this series I looked at the general characteristics of Linux installations on systems with UEFI firmware - specifically how the disk is partitioned, ...

The vulnerabilities were introduced when Lenovo inadvertently included an early development driver in the commercial versions of their software. Lenovo has released fixes for high-severity bios ...

Acer has fixed a high-severity vulnerability affecting multiple laptop models that could enable local attackers to deactivate UEFI Secure Boot on targeted systems. The Secure Boot security feature ...

UEFI secure boot was designed to block malicious code from sneaking into your PC's BIOS boot-up process. However, a newly discovered ransomware dubbed HybridPetya somehow found a way to circumvent ...