Gigabyte Releases BIOS Update to Remove Backdoor Containing Security Hazards on Motherboards
2 min readGigabyte Releases BIOS Update to Remove Backdoor Containing Security Hazards on Motherboards
- Huawei Mate 60 Pro Makes Satellite Calls: Only US$0.18/minute
- Huawei Mate60 Pro: First Smart Phone Supports Satellite Calls
- 14000 cores + 450W: RTX 4080 graphics card perfectly replaces the RTX 3080
- Big upgrade: The difference between Bluetooth 5.0 and 5.2
- Geeks Disappointed that RTX 4080/4090 doesn’t come with PCIe 5.0
- What are advantages and disadvantages of different load balancing?
Gigabyte Releases BIOS Update to Remove Backdoor Containing Security Hazards on Motherboards.
Taiwanese computer component maker Gigabyte has announced a BIOS update aimed at removing a backdoor function recently found in hundreds of its motherboards.
The problem, disclosed last week by firmware and hardware security firm Eclypsium, is that the firmware on more than 270 Gigabyte motherboards executes a Windows binary on boot to fetch and execute a payload from Gigabyte’s servers.
As a feature related to the Gigabyte Application Center, the backdoor does not appear to be used for malicious purposes, but threat actors have been known to abuse the tool in previous attacks.
When Eclypsium made its findings public, it said it was unclear whether the backdoor was the result of a malicious insider, a compromise of Gigabyte’s servers, or a supply chain attack.
Shortly after Eclypsium’s report, Gigabyte announced the release of a BIOS update to address the vulnerability.
“GIGABYTE’s engineers have mitigated potential risks and uploaded the Intel 700/600 and AMD 500/400 series Beta BIOS to the official website after thoroughly testing and verifying the new BIOS on GIGABYTE motherboards,” the company said over the weekend Announce.
BIOS updates for Intel 500/400 and AMD 600 series chipset motherboards, as well as previously released motherboards, will also be released over the weekend.
The update addresses the “Download Assistant vulnerability reported by Eclypsium,” mentioned in the release notes for the latest BIOS available for A520 Aorus Elite rev 1.0 motherboards.
The update implements stricter security checks at system startup, including improved validation of files downloaded from remote servers and standard validation of remote server certificates.
The new security enhancements should prevent attackers from inserting malicious code during the startup process and should guarantee that any files downloaded during the process come from a server with a valid and trusted certificate, the company said.
Institutions and end users alike should review Eclypsium’s list of more than 270 affected motherboard models and, if affected, head to Gigabyte’s support site to check for and download any BIOS updates released after June 1, 2023.
- DIY a PBX (Phone System) on Raspberry Pi
- How to host multiple websites on Raspberry Pi 3/4?
- A Free Intercom/Paging system with Raspberry pi and old Android phones
- DIY project: How to use Raspberry Pi to build DNS server?
- Raspberry Pi project : How to use Raspberry Pi to build git server?
