all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Micro-Star International Signing Key Stolen

Add to bookmarks
May 15, 2023, 11:18 a.m. | Bruce Schneier

Schneier on Security www.schneier.com

Micro-Star International—aka MSI—had its UEFI signing key stolen last month.


This raises the possibility that the leaked key could push out updates that would infect a computer’s most nether regions without triggering a warning. To make matters worse, Matrosov said, MSI doesn’t have an automated patching process the way Dell, HP, and many larger hardware makers do. Consequently, MSI doesn’t provide the same kind of key revocation capabilities.


Delivering a signed payload isn’t as easy as all that. “Gaining the …

automated computer dell hardware infect international key leaked micro msi patching process ransomware signatures signing stolen supply chain uefi updates warning

Visit resource

More from www.schneier.com / Schneier on Security

Friday Squid Blogging: Squid Purses 13 hours ago | www.schneier.com
blog blogging can guidelines +6
My TED Talks 16 hours ago | www.schneier.com
conferences controls data internet +9
Rare Interviews with Enigma Cryptanalyst Marian Rejewski 23 hours ago | www.schneier.com
crack cryptanalysis enigma history of cryptography +5
The UK Bans Default Passwords 1 day, 23 hours ago | www.schneier.com
act and telecommunications ban bans +19
AI Voice Scam 2 days, 23 hours ago | www.schneier.com
artificial intelligence bbc money scam +4
WhatsApp in India 3 days, 23 hours ago | www.schneier.com
courts encryption end end-to-end +5
Whale Song Code 4 days, 23 hours ago | www.schneier.com
basic broadcast code cold +18
Friday Squid Blogging: Searching for the Colossal Squid 1 week ago | www.schneier.com
blog blogging can cruise +7
Long Article on GM Spying on Its Cars’ Drivers 1 week ago | www.schneier.com
article cars companies data +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Network Security Administrator

@ Peraton | United States
View on infosec-jobs.com

IT Security Engineer 2

@ Oracle | BENGALURU, KARNATAKA, India
View on infosec-jobs.com

Sr Cybersecurity Forensics Specialist

@ Health Care Service Corporation | Chicago (200 E. Randolph Street)
View on infosec-jobs.com

Security Engineer

@ Apple | Hyderabad, Telangana, India
View on infosec-jobs.com

Cyber GRC & Awareness Lead

@ Origin Energy | Adelaide, SA, AU, 5000
View on infosec-jobs.com

Senior Security Analyst

@ Prenuvo | Vancouver, British Columbia, Canada
View on infosec-jobs.com
View more jobs