Security News > 2023 > May > MSI’s firmware, Intel Boot Guard private keys leaked

MSI’s firmware, Intel Boot Guard private keys leaked
2023-05-08 11:25

The cybercriminals who breached Taiwanese multinational MSI last month have apparently leaked the company's private code signing keys on their dark web site.

MSI is a corporation that develops and sells computers and computer hardware.

Binarly, a cybersecurity company specializing in firmware supply chain security, has analyzed the leaked source code and found private code signing keys for firmware images used on 57 MSI products, and private signing keys for Intel Boot Guard used on 116 MSI products.

Obviously, given MSI's previous warning to customers about getting firmware/BIOS updates only from its official website, the company is worried that attackers could compile malicious updates and sign them with the stolen keys.

Leaked Intel OEM private Key Manifest and Boot Policy Manifest keys could be used to sign malicious firmware images so they could pass Intel Boot Guard's verification.

MSI has still not officially commented the findings.


News URL

https://www.helpnetsecurity.com/2023/05/08/msi-private-keys-leaked/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Intel 6803 271 746 378 28 1423