Secure Boot is an industry standard for ensuring that Windows devices do not download malicious firmware or software during the startup process. However, if you are using one of the more than 300 motherboard models MSI has released in the last 18 months, you may not be protected.
Therefore, a cybersecurity researcher found that more than 300 MSI motherboard models do not support Secure Boot by default, allowing you to run any bootloader. These models work with a variety of hardware and firmware, many from Intel and AMD. The authors of the finding said the defect appeared sometime in the third quarter of 2021. accidentally discovered the problem while trying to digitally sign various components of his system.
“I decided to set up Secure Boot using sbctl on my new desktop in 2022-12-11,” wrote David Potocki. “Unfortunately, I’ve noticed that my firmware…accepts every OS image I give it, reliable or not.” Potocki said he found no indication that ASRock, Asus, Biostar, EVGA, Gigabyte and NZXT motherboards were suffering from the same issue.
In a post on Reddit, an MSI spokesperson confirmed Potocki’s findings and said the company will release new firmware versions that will replace the default settings.
Source: Ferra
