{"id":164895,"date":"2023-05-31T22:25:16","date_gmt":"2023-06-01T03:25:16","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2023\/05\/critical-firmware-vulnerability-in-gigabyte-systems-exposes-7-million-devices"},"modified":"2023-05-31T22:25:16","modified_gmt":"2023-06-01T03:25:16","slug":"critical-firmware-vulnerability-in-gigabyte-systems-exposes-7-million-devices","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2023\/05\/critical-firmware-vulnerability-in-gigabyte-systems-exposes-7-million-devices","title":{"rendered":"Critical Firmware Vulnerability in Gigabyte Systems Exposes ~7 Million Devices"},"content":{"rendered":"<p style=\"padding-right: 20px\"><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/critical-firmware-vulnerability-in-gigabyte-systems-exposes-7-million-devices2.jpg\"><\/a><\/p>\n<p>Cybersecurity researchers have found \u201cbackdoor-like behavior\u201d within Gigabyte systems, which they say enables the <a href=\"https:\/\/thehackernews.com\/2022\/11\/new-uefi-firmware-flaws-reported-in.html\" rel=\"noopener\" target=\"_blank\">UEFI firmware<\/a> of the devices to drop a Windows executable and retrieve updates in an unsecure format.<\/p>\n<p>Firmware security firm Eclypsium <a href=\"https:\/\/eclypsium.com\/blog\/supply-chain-risk-from-gigabyte-app-center-backdoor\/\" rel=\"noopener\" target=\"_blank\">said<\/a> it first detected the anomaly in April 2023. Gigabyte has since acknowledged and addressed the issue.<\/p>\n<p>\u201cMost Gigabyte firmware includes a Windows Native Binary executable embedded inside of the UEFI firmware,\u201d John Loucaides, senior vice president of strategy at Eclypsium, told The Hacker News.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cybersecurity researchers have found \u201cbackdoor-like behavior\u201d within Gigabyte systems, which they say enables the UEFI firmware of the devices to drop a Windows executable and retrieve updates in an unsecure format. Firmware security firm Eclypsium said it first detected the anomaly in April 2023. Gigabyte has since acknowledged and addressed the issue. \u201cMost Gigabyte firmware [\u2026]<\/p>\n","protected":false},"author":427,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[34],"tags":[],"class_list":["post-164895","post","type-post","status-publish","format-standard","hentry","category-cybercrime-malcode"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/164895","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/427"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=164895"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/164895\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=164895"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=164895"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=164895"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}