this post was submitted on 06 Dec 2023
166 points (96.1% liked)

Technology

70461 readers
2309 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
166
Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack (arstechnica.com)
submitted 2 years ago by misk@sopuli.xyz to c/technology@lemmy.world
19 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] yuknowhokat@lemmy.world 8 points 2 years ago (12 children)

So, this is proof of concept, not an actual attack at this time. Correct?

[–] d3Xt3r@lemmy.nz 40 points 2 years ago* (last edited 2 years ago) (11 children)

No, it's an actual attack. But we don't know for sure if it's being exploited actively in the wild. This vulnerability has existed ever since PCs adopted UEFI (~2006).

[–] stown@lemmy.world 22 points 2 years ago (10 children)

More importantly, does the attacker need physical access to the computer or can this be performed over the Internet/local network?

[–] stown@lemmy.world 33 points 2 years ago (2 children)

I'll answer because I found the information. It appears that the attacker would need to rely on physical access to the machine OR another exploit that lets them access the computer remotely.

[–] The_Cleanup_Batter@lemmy.world 12 points 2 years ago (1 children)

So the best security is still keeping your computer behind a locked door and not clicking on suspicious stuff?

[–] user224@lemmy.sdf.org 9 points 2 years ago (1 children)

The best security is keeping it in box, removing the battery, and never turning it on. /j

[–] The_Cleanup_Batter@lemmy.world 6 points 2 years ago (1 children)

Maybe I should hire an Amish guy as a consultant for IT. Those guys never get hacked.

[–] Naminreb@kbin.social 1 points 2 years ago

Beg to disagree. See: “Amish Mafia.”

[–] d3Xt3r@lemmy.nz 6 points 2 years ago* (last edited 2 years ago)

Or they could just get you to execute the command without your knowledge (eg: all the people who just blindly copy-paste commands, or pipe scripts from the net into sudo). Or it could be a compromised github account/repo (supply-chain attack). Or even the ol' techsupport scam where they get gullible users to install stuff...

load more comments (7 replies)
load more comments (7 replies)
load more comments (7 replies)