-
New UEFI flaw enables pre-boot attacks on motherboards from Gigabyte, MSI, ASUS, ASRock
The UEFI firmware implementation in some motherboards from ASUS, Gigabyte, MSI, and ASRock is vulnerable to direct memory access (DMA) attacks that can bypass early-boot memory protections.
- December 19, 2025
- 10:54 AM
13
-
Gigabyte motherboards vulnerable to UEFI malware bypassing Secure Boot
Dozens of Gigabyte motherboard models run on UEFI firmware vulnerable to security issues that allow planting bootkit malware that is invisible to the operating system and can survive reinstalls.
- July 14, 2025
- 12:30 PM
5
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
ASUS DriverHub flaw let malicious sites run commands with admin rights
The ASUS DriverHub driver management utility was vulnerable to a critical remote code execution flaw that allowed malicious sites to execute commands on devices with the software installed.
- May 12, 2025
- 05:26 PM
- 0
-
ASUS releases fix for AMI bug that lets hackers brick servers
ASUS has released security updates to address CVE-2024-54085, a maximum severity flaw that could allow attackers to hijack and potentially brick servers.
- April 23, 2025
- 10:50 AM
- 1
-
GIGABYTE releases new firmware to fix recently disclosed security flaws
GIGABYTE has released firmware updates to fix security vulnerabilities in over 270 motherboards that could be exploited to install malware.
- June 05, 2023
- 11:09 AM
- 5
-
MSI breaks Secure Boot for hundreds of motherboards
Over 290 MSI motherboards are reportedly affected by an insecure default UEFI Secure Boot setting settings that allows any operating system image to run regardless of whether it has a wrong or missing signature.
- January 16, 2023
- 05:02 PM
- 8
-
CosmicStrand UEFI malware found in Gigabyte, ASUS motherboards
Chinese-speaking hackers have been using since at least 2016 malware that lies virtually undetected in the firmware images for some motherboards, one of the most persistent threats commonly known as a UEFI rootkit.
- July 25, 2022
- 09:37 PM
- 3
-
Computer hardware giant GIGABYTE hit by RansomEXX ransomware
Taiwanese motherboard maker Gigabyte has suffered a RansomEXX ransomware attack where threat actors threaten to release 112 GB of data if a ransom is not paid.
- August 06, 2021
- 12:09 PM
- 0
-
Supermicro, Pulse Secure release fixes for 'TrickBoot' attacks
Supermicro and Pulse Secure have released advisories warning that some of their motherboards are vulnerable to the TrickBot malware's UEFI firmware-infecting module, known as TrickBoot.
- March 04, 2021
- 08:14 PM
- 0
-
ASUS, GIGABYTE Drivers Contain Code Execution Vulnerabilities - PoCs Galore
Four drivers from ASUS and GIGABYTE come with several vulnerabilities that can be leveraged by an attacker to gain higher permissions on the system and to execute arbitrary code.
- December 18, 2018
- 04:03 PM
- 0
-
Academics Announce New Protections Against Spectre and Rowhammer Attacks
Academics from multiple universities have announced fixes for two severe security flaws known as Spectre and Rowhammer.
- July 23, 2018
- 04:55 AM
- 0
-
TPM Chipsets Generate Insecure RSA Keys. Multiple Vendors Affected
Infineon TPM chipsets that come with many modern-day motherboards generate insecure RSA encryption keys that put devices at risk of attack.
- October 16, 2017
- 05:07 AM
- 1
-
Some Motherboards Plagued by BIOS Firmware Implementation Flaws
Alex Matrosov, a security researcher for Cylance, has discovered several flaws in how some motherboard vendors implemented Intel's UEFI BIOS firmware into their products.
- October 07, 2017
- 03:00 AM
- 0
