Researchers have discovered 23 "high-impact vulnerabilities" affecting any vendors that adopted Independent BIOS Developers (IBV) code into their Unified Extensible Firmware Interface (UEFI) firmware.

BEAVERTON, Ore.--(BUSINESS WIRE)--The Unified EFI Forum, a non-profit collaborative specification organization formed to define, promote and manage the UEFI (Unified Extensible Firmware Interface) ...

Firmware: the unprotected layer inside every computer. Two months ago, researchers at US security company AdvIntel discovered that one of the Internet’s most troublesome malware platforms, Trickbot, ...

Binarly, a security research company that deals with firmware threats, has disclosed in a recent blog post that the InsydeH2O "Hardware-2-Operating System" UEFI BIOS, a firmware used by several major ...

Lenovo has published a security advisory on vulnerabilities that impact its Unified Extensible Firmware Interface (UEFI) loaded on at least 100 of its laptop models. A total of three security issues ...

The vulnerabilities were introduced when Lenovo inadvertently included an early development driver in the commercial versions of their software. Lenovo has released fixes for high-severity bios ...

This will be my last foray into UEFI firmware for quite a while. For those who are already tired of my writing about it, I apologize in advance; for those who have asked for more, here it is. For the ...

Why it matters: Security researchers have found that the same set of firmware vulnerabilities they discovered in Fujitsu Lifebook systems actually affect many more devices from multiple vendors. The ...

BEAVERTON, Ore.--(BUSINESS WIRE)--The Unified Extensible Firmware Interface Forum (UEFI) today announced it has released the UEFI Specification, Version 2.8, which reflects many recent and useful ...

To understand the transition from legacy BIOS to UEFI firmware, it’s best to begin with a review of a decades-old system—the 1983 IBM-compatible PC—and continue with a study of its successor ...

Yesterday, at the BlackHat Asia 2017 security conference, researchers from cyber-security firm Cylance disclosed two vulnerabilities in the firmware of Gigabyte BRIX small computing devices, which ...