A security issue called PKfail has affected hundreds of computer models, allowing attackers to run malicious code during the device’s boot process. This vulnerability is related to an exposed private key called the American Megatrends International (AMI) Platform Key (PK) used in Secure Boot.
The exposed PK was a default key provided by AMI and it was not supposed to be used in production. However, several major computer manufacturers failed to change the PK and shipped many devices with the untrusted key.
Read More: PKfail Vulnerability Allows Secure Boot Bypass on Hundreds of Computer Models
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.