Come join us at our #cybersecurity seminar next Thursday! ⁠ ⁠ As the Founder and CEO of BINARLY🔬, Alex Matrosov will discuss #research areas of interest to help the industry recover from repeatable failures in firmware #security. ⁠ Tune in on zoom: bit.ly/3V8Snby

⛓️Recently, MSI Gaming USA announced a significant data breach. The data has now been made public, revealing a vast number of private keys that could affect numerous devices. 🔥FW Image Signing Keys: 57 products 🔥Intel BootGuard BPM/KM Keys: 166 products 🔬github.com/binarly-io/Sup…

⛓️Digging deeper into the aftermath of the MSI Gaming USA data breach and its impact on the industry. 🔥Leaked Intel BootGuard keys from MSI are affecting many different device vendors, including @Intel , Lenovo, @Supermicro_SMCI, and many others industry-wide. 🔬#FwHunt is on!

⛓️Confirmed, Intel OEM private key leaked, causing an impact on the entire ecosystem. It appears that Intel BootGuard may not be effective on certain devices based on the 11th Tiger Lake, 12th Adler Lake, and 13th Raptor Lake. Our investigation is ongoing, stay tuned for updates.

Security researchers on claiming on Twitter that an Intel Boot Guard OEM Private Key was leaked as part of the MSI data breach servethehome.com/intel-boot-gua… Alex Matrosov Intel BINARLY🔬

⛓️Diving deeper into MSI leak, it has been discovered that one of the leaked keys (bxt_dbg_priv_key.pem) is associated with Intel Orange or OEM Unlocked. 🔥Based on Intel documentation, it appears to be more powerful in comparison to Boot Guard keys. intel.com/content/www/us…

🔥The bxt_dbg_priv_key.pem, which is the Intel OEM Platform Key (Orange Unlock) obtained from an MSI leak, has been detected on devices from HP, Lenovo, AOPEN, CompuLab, and Star Labs. 🔬Stay tuned for more updates as the investigation continues. github.com/binarly-io/Sup…

FYI: Intel BootGuard OEM private keys leak from MSI cyber-heist reg.cx/48qw?utm_sourc…

Intel BootGuard, Firmware Signing Keys Found in MSI Data Leak decipher.sc/intel-bootguar… #decipher #deciphersec

⛓️Thank you Intel Security for fixing the incomplete RSB stuffing SMM mitigation (#FirmwareBleed/CVE-2022-38087). 💥BRLY: binarly.io/advisories/BRL… 💥Intel: intel.com/content/www/us… 💥IBM: ibm.com/support/pages/… 💥Dell: dell.com/support/kbdoc/… 🔬Details: binarly.io/posts/Firmware…

💥HP: support.hp.com/sk-en/document… 💥Lenovo: support.lenovo.com/us/en/product_… 🔥NVD CVSS score: 8.8 High (CWE-78) nvd.nist.gov/vuln/detail/CV…

🔥New finding! We have confirmed that previously leaked Intel BootGuard private keys from Lenovo/LCFC in September 2022 are still relevant for numerous devices in the field (Lenovo, Supermicro, Intel ...). ⛓️github.com/binarly-io/Sup… 🔬FwHunt: github.com/binarly-io/FwH…

🎙️Join us tomorrow for the #BHASIA talk: "The Various Shades of Supply Chain: SBOM, N-Days, and Zero Trust." /cc @hughsient immune ⛓️We have some fascinating data insights regarding firmware supply chain security. blackhat.com/asia-23/briefi…

⛓️Design issues are the worst! 🔥Given the current revocation architecture, we are facing the serious challenges of accommodating over 2300+ bootmgr binaries within DBX Revocation List (limited space left in EFI Variable storage).

😎We are excited to Welcome Alex Alex Matrosov BINARLY🔬 for the📡CXO panel! 🧠Learn, network & collaborate with the #hardwaresecurity geniuses➡️bit.ly/3UCENgz #hw_ioUSA2023 #Conference

Heading to the Qualcomm Product Security Summit and @Offensive_con this week 🔥A Dark Side of UEFI: Cross-Silicon Exploitation @Binarly_io REsearch going to present new ways of exploiting Qualcomm Snapdragon 8 devices with UEFI-specific flavor. Stay tuned! Alexander Ermolov Yegor

Binarly adventures at #RSAC2023🤟 youtube.com/watch?v=0q-hTD…

A Dark Side of UEFI: Cross-Silicon Exploitation by Alex Matrosov and Alexander Ermolov now #OffensiveCon23

⛓️The widespread use of UEFI on ARM devices notably expands the attack surfaces within TrustZone and beyond, raising security concerns 💥REsearch: "A Dark Side of UEFI: Cross-Silicon Exploitation" presented the new ARM attacks at offensivecon 🔬Slides: github.com/binarly-io/Res…

🔥At offensivecon, we showcased three different attack scenarios on ARM UEFI and beyond: 1️⃣CWE-125: OOB (memory leak) with GetVariable/SetVariable pattern. 2️⃣BRLY-2022-033: GetVariable Stack overflow (UsbConfigDxe). 3️⃣LPE to SMM from DXE by design. youtube.com/watch?v=7COjay…