Security Flaw ‘PKFail’ Puts Millions of Devices at Risk of Secure Boot Bypass

Published:

spot_img

Millions of Intel and ARM-Based Systems Vulnerable to Secure Boot Bypass Attack

A major security flaw has been uncovered in millions of Intel and ARM microprocessor-based computing systems from various vendors, allowing attackers to bypass the Secure Boot process due to a leaked cryptographic key. The so-called Platform Key (PK) from AMI, a crucial element in the Secure Boot chain, has been compromised, leaving devices vulnerable to exploitation.

Researchers at Binarly uncovered the issue, revealing that the key was leaked in 2018 and has since been widely used in devices from manufacturers like Lenovo, HP, Asus, and SuperMicro. This security vulnerability, dubbed “PKFail,” enables attackers to manipulate key databases and deploy bootkits that provide unauthorized access to devices.

The solution to this critical issue is relatively simple: affected devices must receive a firmware update to replace the compromised key. While some vendors have already taken steps to address the issue, the process may take time for certain devices and systems, such as data center servers or critical applications.

According to experts, the use of test keys in production firmware has been a longstanding problem in the industry, leading to widespread security risks. The PKFail incident highlights the urgent need for improved cryptographic key management practices in the device supply chain to prevent similar vulnerabilities in the future. Organizations are advised to disconnect affected devices from critical networks until a firmware update can be implemented to mitigate the risk of exploitation.

spot_img

Related articles

Recent articles

Fraud Surges in UAE This Summer: Holidaymakers Targeted by AI-Driven Scams and Fake Offers

Fraud Surges in UAE This Summer: Holidaymakers Targeted by AI-Driven Scams and Fake Offers As the summer season prompts residents of the UAE to embark...

Consolidation Strengthens Cybersecurity in the MENA Region Amid Rising Threats

Consolidation Strengthens cybersecurity in the MENA Region Amid Rising Threats Cybersecurity leaders are navigating an increasingly complex landscape, facing mounting pressure from regulatory bodies, evolving...

Windows Bind Link Attacks Strengthen Evasion Techniques Against EDR Tools

Windows Bind Link Attacks Strengthen Evasion Techniques Against EDR Tools Recent research from Bitdefender has unveiled critical vulnerabilities in Windows' bind link feature, demonstrating how...

Malicious AI Models Surge on Dark Web: WormGPT, FraudGPT, and the Rise of Unrestricted Cybercrime Tools

Malicious AI Models Surge on Dark Web: WormGPT, FraudGPT, and the Rise of Unrestricted Cybercrime Tools The emergence of malicious AI models on the dark...