Supply Chain Risk from Gigabyte App Center Backdoor

Recently, the Eclypsium platform began detecting suspected backdoor-like behavior within Gigabyte systems in the wild. These detections were driven by heuristic detection methods, which play an important role in detecting new, previously-unknown supply chain threats, where legitimate third-party technology products or updates have been compromised. Our follow-up analysis discovered that firmware in Gigabyte systems is dropping and executing a Windows native executable during the system startup process, and this executable then downloads and executes additional payloads insecurely. It uses the …

analysis app backdoor center compromised detection detections eclypsium firmware gigabyte important party platform play products risk role supply supply chain supply chain risk systems technology third third-party threats updates