all InfoSec news
Supply Chain Risk from Gigabyte App Center Backdoor
Malware Analysis, News and Indicators - Latest topics malware.news
Recently, the Eclypsium platform began detecting suspected backdoor-like behavior within Gigabyte systems in the wild. These detections were driven by heuristic detection methods, which play an important role in detecting new, previously-unknown supply chain threats, where legitimate third-party technology products or updates have been compromised. Our follow-up analysis discovered that firmware in Gigabyte systems is dropping and executing a Windows native executable during the system startup process, and this executable then downloads and executes additional payloads insecurely. It uses the …
analysis app backdoor center compromised detection detections eclypsium firmware gigabyte important party platform play products risk role supply supply chain supply chain risk systems technology third third-party threats updates