The UEFI firmware used in several laptops made by Lenovo is vulnerable to three buffer overflow vulnerabilities that could enable attackers to hijack the startup routine of Windows installations.

The vulnerabilities were introduced when Lenovo inadvertently included an early development driver in the commercial versions of their software. Lenovo has released fixes for high-severity bios ...

Binarly, a security research company that deals with firmware threats, has disclosed in a recent blog post that the InsydeH2O "Hardware-2-Operating System" UEFI BIOS, a firmware used by several major ...

Researchers have discovered 23 "high-impact vulnerabilities" affecting any vendors that adopted Independent BIOS Developers (IBV) code into their Unified Extensible Firmware Interface (UEFI) firmware.

BEAVERTON, Ore.--(BUSINESS WIRE)--The Unified Extensible Firmware Interface Forum (UEFI) today announced it has released the UEFI Specification, Version 2.8, which reflects many recent and useful ...

When someone thinks of malware, the usual thought is an EXE file containing offending code that is downloaded to a target machine and executed by the user. However, a team at SecureList is trying to ...

Researchers uncovered a stealthy UEFI rootkit that’s being used in highly targeted campaigns by a notorious Chinese cyberespionage group with suspected government ties. The group is known for using ...

This will be my last foray into UEFI firmware for quite a while. For those who are already tired of my writing about it, I apologize in advance; for those who have asked for more, here it is. For the ...