Binarly: UEFI Secure Boot is completely compromised on 200+ device models sold by Acer, Dell, Gigabyte, Intel, and Supermicro due to a cryptographic key leak
hundreds of devices from Dell, Supermicro and more all affected, here's what we know Adam Conway / XDA Developers : PKFail puts hundreds of computers and laptops at risk and renders Secure Boot useles...
Binarly: UEFI Secure Boot is completely compromised on 200+ device models sold by Acer, Dell, Gigabyte, Intel, and Supermicro due to a cryptographic key leak
Keys were labeled “DO NOT TRUST.” Nearly 500 device models use them anyway. — In 2012, an industry-wide coalition of hardware …
Survey of 2,200+ Facebook users from Dec.-Jan.: 330+ saw flagged posts about controversial issues, like 2020 election, but “false” label was added only 12 times
especially if it came from Trump Charlesarthur / The Overspill : Start Up No.1487: Ericsson chief slams Europe on 5G, Bloomberg insists on Supermicro, Apple escapes Epic sideload bill, and more Tweets...
[Thread] A breakdown of significant issues with Bloomberg's recent Supermicro story, which may have relied on misunderstandings of an FBI briefing by a source
@pwnallthethings :
[Thread] A breakdown of significant issues with Bloomberg's recent Supermicro story, which may have relied on misunderstandings of an FBI briefing by a source
tl;dr is a source misunderstood an FBI defensive briefing on China's supply chain activities, leaked it to the press, and bloomberg has *again* failed to do the work necessary to verify the sensationa...
Sources: US investigators say hardware and firmware of Supermicro servers were tampered with as late as 2018, via chips with backdoors sending data to China
It has been two and a half years since … John Gruber / Daring Fireball : Bloomberg, at Long Last, Follows up on ‘The Big Hack’, and It's Nothing but a Pile of Sophistic Horseshit Thom Holwerda / OSnew...
Sources: US investigators say hardware and firmware of Supermicro servers were tampered with an extra chip loaded with backdoor code to send data to China
In 2010, the U.S. Department of Defense found thousands of its computer servers sending military network data to China …
Flaws found in Supermicro motherboards could let hackers remotely mount virtual USB drives; patch issued, but 47,000+ potentially exposed devices found online
Lily Hay Newman / Wired :
Researchers find that weaknesses in Supermicro hardware would let an attacker leave a persistent and hidden backdoor on IBM's cloud “bare-metal” servers
IBM rated the severity “low”, while Eclypsium assigned a 9.3 “critical” CVE 3. Solid work by @ABazhaniuk and team. http://eclypsium.com/... Kenn White / @kennwhite : Researchers at @eclypsium demonstr...
Researchers find that weaknesses in Supermicro hardware would let an attacker leave a persistent and hidden backdoor on IBM's cloud “bare-metal” servers
Other providers of bare-metal cloud computing might also be vulnerable to BMC hack. — More than five years …