firmware

Safeguards against firmware signed with stolen MSI keys

May 30, 2023 by iHash Leave a Comment

What could be worse than a ransomware attack on your company? Only an incident that hits your company’s clients, I guess. Well, that’s exactly what happened to MSI — the large Taiwanese manufacturer of laptops, video adapters and motherboards. In the beginning of April, word got out that the company was attacked by a new ransomware gang called Money Message; a while later the … [Read more...] about Safeguards against firmware signed with stolen MSI keys

New UEFI Firmware Flaws Reported in Several Lenovo Notebook Models

Nov 10, 2022 by iHash Leave a Comment

PC maker Lenovo has addressed yet another set of three shortcomings in the Unified Extensible Firmware Interface (UEFI) firmware affecting several Yoga, IdeaPad, and ThinkBook devices. "The vulnerabilities allow disabling UEFI Secure Boot or restoring factory default Secure Boot databases (incl. dbx): all simply from an OS," Slovak cybersecurity firm ESET explained in a series … [Read more...] about New UEFI Firmware Flaws Reported in Several Lenovo Notebook Models

CosmicStrand rootkit hides in the UEFI firmware

Jul 27, 2022 by iHash Leave a Comment

Our researchers examined a new version of the CosmicStrand rootkit, which they found in modified UEFI (Unified Extensible Firmware Interface) firmware — the code that loads first and initiates the OS boot process when the computer is turned on. The danger of UEFI malware Since UEFI firmware is embedded in a chip on the motherboard and not written to the hard drive, it is immune … [Read more...] about CosmicStrand rootkit hides in the UEFI firmware

New Lenovo UEFI Firmware Vulnerabilities Affect Millions of Laptops

Apr 19, 2022 by iHash Leave a Comment

Three high-impact Unified Extensible Firmware Interface (UEFI) security vulnerabilities have been discovered impacting various Lenovo consumer laptop models, enabling malicious actors to deploy and execute firmware implants on the affected devices. Tracked as CVE-2021-3970, CVE-2021-3971, and CVE-2021-3972, the latter two "affect firmware drivers originally meant to be used … [Read more...] about New Lenovo UEFI Firmware Vulnerabilities Affect Millions of Laptops

New 16 High-Severity UEFI Firmware Flaws Discovered in Millions of HP Devices

Mar 8, 2022 by iHash Leave a Comment

Cybersecurity researchers on Tuesday disclosed 16 new high-severity vulnerabilities in various implementations of Unified Extensible Firmware Interface (UEFI) firmware impacting multiple HP enterprise devices. The shortcomings, which have CVSS scores ranging from 7.5 to 8.8, have been uncovered in HP's UEFI firmware. The variety of devices affected includes HP's laptops, … [Read more...] about New 16 High-Severity UEFI Firmware Flaws Discovered in Millions of HP Devices

Chinese Hackers Spotted Using New UEFI Firmware Implant in Targeted Attacks

Jan 21, 2022 by iHash Leave a Comment

A previously undocumented firmware implant deployed to maintain stealthy persistence as part of a targeted espionage campaign has been linked to the Chinese-speaking Winnti advanced persistent threat group (APT41). Kaspersky, which codenamed the rootkit MoonBounce, characterized the malware as the "most advanced UEFI firmware implant discovered in the wild to date," adding "the … [Read more...] about Chinese Hackers Spotted Using New UEFI Firmware Implant in Targeted Attacks

Apple Stopped Signing iOS 8.1.3

Mar 24, 2015 by iHash Leave a Comment

Apple has stopped signing iOS 8.1.3, making it impossible to downgrade to the firmware. As a reminder to those still on iOS 8.1.3 and especially those on iOS 8.1.2, Semphore will soon release an update to Tiny Umbrella that will be able to fetch SHSH blobs from off the device. … [Read more...] about Apple Stopped Signing iOS 8.1.3

Apple Has Stopped Signing iOS 8.1.1

Dec 18, 2014 by iHash Leave a Comment

Apple has stopped signing iOS 8.1.1 meaning that it is no longer possible to downgrade or restore to the firmware. … [Read more...] about Apple Has Stopped Signing iOS 8.1.1

Apple Releases Thunderbolt Display Firmware Update 1.2

Nov 14, 2014 by iHash Leave a Comment

Apple released Thunderbolt Display Firmware Update 1.2, designed for the Thunderbolt Display that was released in 2011. According to the release notes, the update improves reliability when connecting devices to the Apple Thunderbolt Display and addresses a rare issue that may cause the display to go black. … [Read more...] about Apple Releases Thunderbolt Display Firmware Update 1.2

Apple Releases Apple TV 7 Beta 1 Firmware

Jun 17, 2014 by iHash Leave a Comment

Apple has released Apple TV 7 Beta 1 firmware to developers for testing. Notably, beta firmware was only released for the 3rd generation and 3rd generation Rev A models suggesting that support for the 2010 Apple TV has been dropped. Apple TV 7 Beta 1 Known Issues • Stuttering (dropped frames) may occur intermittently during video playback. In some cases, playback may … [Read more...] about Apple Releases Apple TV 7 Beta 1 Firmware

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54