Sys-Admin & InfoSec Channel(@sysadm_in_channel). Supply Chain Risk From Gigabyte App Center Backdoor Recently, the Eclypsium platform began detectin

Sys-Admin & InfoSec Channel

13884 @sysadm_in_channel

Открыть

Посты с ИТ-ресурсов, новости, тулзы, хакинг, администрирование, возможны бредовые посты с мемами, поздравлениями, может даже хейтами..

Sys-Admin & InfoSec Channel

@sysadm_in_channel 3 года назад

Открыть в

Supply Chain Risk From Gigabyte App Center Backdoor Recently, the Eclypsium platform began detecting suspected backdoor-like behavior within Gigabyte systems in the wild. ..analysis discovered that firmware in Gigabyte systems is dropping and executing a Windows native executable during the system startup process, and this executable then downloads and executes additional payloads insecurely. It uses the same techniques as other OEM backdoor-like features like Computrace backdoor (a.k.a. LoJack DoubleAgent)..: eclypsium.com/blog/su…backdoor

Supply Chain Risk from Gigabyte App Center Backdoor - Eclypsium | Supply Chain Security for the Modern Enterprise

Recently, the Eclypsium platform began detecting suspected backdoor-like behavior within Gigabyte systems in the wild. These detections were driven by heuristic detection methods, which play an important role in detecting new, previously-unknown supply chain threats, where legitimate third-party technology products or updates have been compromised. Our follow-up analysis discovered that firmware in Gigabyte systems is […]

Eclypsium | Supply Chain Security for the Modern Enterprise