These keys are required to approve software updates, and their secrecy allows attackers to infect laptops with official BIOSes without being detected. Antivirus systems may not detect malware as they detect it as legitimate due to the use of stolen keys. Additionally, Intel Boot Guard keys were exposed for 117 MSI products, rendering the protection unusable.
MSI has urged its users to avoid downloading software from unofficial sources, but solving the problem is a big challenge. The company’s options are limited because upgrading to new secure keys will require the use of compromised keys.
According to experts, MSI does not have a mechanism to revoke compromised keys, which makes the situation worse. MSI and Intel have yet to respond to requests for comment.
After a ransom-demanding cyberattack on MSI servers last month that stole sensitive data, hackers resorted to leaking when their demands were not met.
You can find the list of affected laptops here.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
