Millions exposed to LogoFAIL bugs: Should CISOs be worried?

Millions exposed to LogoFAIL firmware flaws: Should CISOs be worried? Well, yes, honestly.

You're probably exposed to rootkit risk, because vendors wanted their logos to show during boot processes -- everything's broken, howl into the abyss, why's this security advisory on a domain like https://9443417.fs1.hubspotusercontent-na1.net anyway?

Edward Targett

Dec 07, 2023 - 3 min read

A newly discovered set of security vulnerabilities called LogoFAIL has been found in UEFI system firmware from multiple vendors, including AMI, Insyde, and Phoenix that can be found in millions of consumer and enterprise devices from a sweeping range of ubiquitous OEMs.

The vulnerabilities, which give an attacker persistence, affect downstream OEMs from Acer to Intel, Dell to HP, Fujitsu to Supermicro and beyond.

Get the full story: Subscribe for free

Get the story, a weekly newsletter (you can turn that off if you want) and help us fight bots and feral algorithms. Subscribe today.

Subscribe now

Already a member? Sign in