Security news aggregator

Latest coverage for BIOS

Stay updated on BIOS security trends, threats, and protection strategies. Essential reading for IT professionals and cybersecurity enthusiasts.

7 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

BIOS is low-level firmware embedded on a motherboard chip that initializes hardware components and loads the operating system during startup. It operates before the OS and controls critical functions like hardware configuration and the boot sequence. Because BIOS runs first, it establishes the initial trust environment for the system’s software and hardware.

Security risks include unauthorized BIOS modification, which can implant persistent malware that survives OS reinstallations or disk replacements. Attackers may exploit vulnerabilities to install firmware rootkits or bypass secure boot protections. Defenses focus on restricting BIOS access with passwords, applying cryptographically verified firmware updates, and enabling hardware-based secure boot mechanisms to ensure only trusted code executes during system startup.

Volume over time

Weekly headline count for the current query.

Showing 7 most recent headlines Filtered view

Answers on a postcard to what 'Microcode Signature Verification Vulnerability' might mean AMD has confirmed at least some of its microprocessors suffer a microcode-related security vulnerability, the existence of which accidentally emerged this month after a fix for the flaw appeared in a beta BIOS update from PC maker Asus.…

Gurus say source includes secret hardware info, private signing key for Boot Guard protection Source code for the BIOS used with Intel's 12th-gen Core processors has been leaked online, possibly including details of undocumented model-specific registers (MSRs) and even the private signing key for Intel's Boot Guard security technology.…

So. Many. BIOS. Bugs Intel has disclosed high-severity bugs in its firmware that's used in datacenter servers, workstations, mobile devices, storage products, and other gear. These flaws can be exploited to escalate privileges, leak information, or stop things from working.…