UEFI Vulnerabilities Galore - PSW #878
Paul's Security Weekly (Audio)
00:00
Navigating UEFI Vulnerabilities
This chapter explores the myriad of recent UEFI vulnerabilities, particularly emphasizing a notable issue called 'Hydrophobia' that allows attackers to modify critical system settings. The discussion highlights the challenges faced by cybersecurity professionals in managing these risks and the broader implications these vulnerabilities have on devices across the supply chain. Through a detailed examination of flaws related to Secure Boot and Microsoft’s UEFI certificates, the speakers underscore the pressing need for robust organizational measures to address emerging threats.
Transcript
Play full episode
