ZDNet

Lenovo patches UEFI firmware vulnerabilities impacting millions of users

Lenovo has patched a trio of bugs that could be abused to perform UEFI attacks. A roundup of the best software and apps for Windows and Mac computers, as well as iOS and Android devices, to keep ...
Threat Post

Scope of ThinkPwn UEFI Zero Day Expands

The scope of the ThinkPwn UEFI vulnerability disclosed last week has grown past Lenovo and HP laptop firmware to motherboards sold by Gigabyte. A serious hardware vulnerability, thought to be confined ...
Bleeping Computer

Phoenix UEFI vulnerability impacts hundreds of Intel PC models

A newly discovered vulnerability in Phoenix SecureCore UEFI firmware tracked as CVE-2024-0762 impacts devices running numerous Intel CPUs, with Lenovo already releasing new firmware updates to resolve ...
WeLiveSecurity

When "secure" isn't secure at all: High-impact UEFI vulnerabilities discovered in Lenovo consumer laptops

ESET researchers have discovered and analyzed three vulnerabilities affecting various Lenovo consumer laptop models. The first two of these vulnerabilities – CVE-2021-3971 and CVE-2021-3972 – affect ...
Bleeping Computer

New Lenovo UEFI firmware updates fix Secure Boot bypass flaws

Lenovo is warning of high-severity BIOS flaws that could let attackers bypass Secure Boot on all-in-one desktops using customized Insyde UEFI firmware. Devices confirmed to be impacted are IdeaCentre ...
Gizmochina

Lenovo UEFI identified only Windows and RHEL

The Red Hat developer Matthew Garrett found Lenovo seems to think that the world is only Two operating system, called Windows, called Red Hat Enterprise Linux (RHEL). He found check Lenovo ThinkCentre ...
Ars Technica

Hackers can infect >100 Lenovo models with unremovable malware. Are you patched?

Lenovo has released security updates for more than 100 laptop models to fix critical vulnerabilities that make it possible for advanced hackers to surreptitiously install malicious firmware that can ...