Just about every Windows and Linux device is vulnerable to new LogoFAIL firmware attack

[thecaretaker]

Heads up folks... Just about every Windows and Linux device is vulnerable to new LogoFAIL firmware attack.

Hundreds of Windows and Linux computer models from virtually all hardware makers are vulnerable to a new attack that executes malicious firmware early in the boot-up sequence, a feat that allows infections that are nearly impossible to detect or remove using current defence mechanisms.
https://arstechnica.com/security/2023/1 ... re-attack/

Many companies are rushing out BIOS updates to stop this threat by preventing the BIOS logo from being changed. Keep an eye on your motherboard's website for an updated BIOS. Apple computers don't seem affected, their logo is hardcoded in the BIOS. It seems any BIOS that allows the logo to be replaced are affected (which is almost all).

It seems few (if any) antivirus programmes are able to detect this deep BIOS attack currently and are definitely unable to remove it.

[Keyolder]

Other than a newish Microsoft Surface Go all my computer related stuff is decades old, including a 14 year old laptop running Linux, no hope for any manufacturers updates for them.

[thecaretaker]

Other than a newish Microsoft Surface Go all my computer related stuff is decades old, including a 14 year old laptop running Linux, no hope for any manufacturers updates for them.

That will be the problem. However, on many computers, if you go into the BIOS and on the boot section, there is an option to turn off the logo. Somebody claims this will prevent the BIOS from trying to render the code. I'm not sure if it would work, but by turning it off, my system actually boots up faster by about 1 second. So there might be some truth in it.