Motherboards from gigabyte, msi, asus and asrock face uefi flaw risks

Suomi

Motherboards produced by major manufacturers including Gigabyte, MSI, ASUS, and ASRock are reportedly vulnerable to a new attack exploiting a UEFI flaw. This vulnerability allows direct memory access attacks on many popular devices. The issue was highlighted in a TechRadar report published on December 22, 2025.

A recent security alert has raised concerns over vulnerabilities in motherboards from leading brands such as Gigabyte, MSI, ASUS, and ASRock. According to TechRadar, these components are at risk from a novel attack targeting flaws in the Unified Extensible Firmware Interface (UEFI). UEFI serves as the firmware that initializes hardware during a device's boot process, making any weaknesses particularly dangerous.

The report details that the flaw enables direct memory access (DMA) attacks, which could allow unauthorized entities to bypass operating system protections and access sensitive data or inject malicious code. Many popular consumer and professional devices incorporating these motherboards are affected, potentially exposing users to risks like data theft or system compromise.

Published on December 22, 2025, the TechRadar article emphasizes the widespread nature of the vulnerability, urging affected users to monitor updates from manufacturers. While specific mitigation steps were not outlined in the available details, the exposure underscores ongoing challenges in securing firmware against evolving cyber threats. No immediate exploits have been confirmed, but the potential for abuse remains a key concern in the cybersecurity landscape.

Liittyvät artikkelit

Shocked customers at a PC store gaze at tripled RAM and SSD prices amid AI shortage, with server imagery in background.
AI:n luoma kuva

Ram and memory prices surge due to ai shortage

Raportoinut AI AI:n luoma kuva

A shortage of ram and flash memory chips, driven by the ai boom, has caused prices to triple in just three months, making it a poor time to build or upgrade pcs. While gpu prices have stabilized, the rising costs affect ssds and both ddr4 and ddr5 kits, with higher-capacity options hit hardest. Manufacturers like lenovo are stockpiling components to mitigate impacts.

ASRock releases BIOS updates for AMD and Intel motherboards

ASRock has issued new BIOS updates for its AMD 600- and 800-series motherboards, along with select Intel 800-series models, to prepare for upcoming processors from both companies. These stable releases include support for anticipated AMD Ryzen chips and Intel's Arrow Lake Refresh series. The updates arrive ahead of expected announcements at CES 2026.

Asus launches internal review of Ryzen 9800X3D CPU failures

Raportoinut AI

Asus has started an immediate internal review in response to concerns about AMD Ryzen 9800X3D CPUs failing in its motherboards. The company addressed the issue amid reports of ongoing problems with the processor. This development highlights continued challenges for the Ryzen 9800X3D series.

Linux

Five Linux distros compatible with Windows Secure Boot

Teknologia

Veeam patches three critical security flaws in backup servers

Pelaaminen

Highguard game mandates secure boot and anti-cheat for play

North Korean hackers exploit maximum severity React2Shell flaw

North Korean hackers have begun exploiting a critical vulnerability known as React2Shell in malware attacks. This follows similar actions by Chinese hackers, indicating a growing interest in this security flaw. The issue poses significant risks to affected systems.

Microsoft alerts users to Secure Boot certificates expiring in 2026

Raportoinut AI

Microsoft has warned that the original Secure Boot certificates, introduced in 2011, will expire in June and October 2026, potentially leaving some PCs in a degraded security state. The company is rolling out updates via Windows Update for supported systems to install new certificates and maintain boot-level protections. Users of Windows 11 and enrolled Windows 10 devices should check for these updates soon.

Russian hackers exploit Microsoft Office vulnerability days after patch

Russian state-sponsored hackers quickly weaponized a newly patched Microsoft Office flaw to target organizations in nine countries. The group, known as APT28, used spear-phishing emails to install stealthy backdoors in diplomatic, defense, and transport entities. Security researchers at Trellix attributed the attacks with high confidence to this notorious cyber espionage unit.

Ukrainian civilians sue US chip firms over Russian weapons

Raportoinut AI

Dozens of Ukrainian civilians have filed lawsuits in Texas against Intel, AMD, and Texas Instruments, alleging negligence in tracking chips that ended up powering Russian drones and missiles. The suits claim the companies ignored warnings and used high-risk supply channels, contributing to deadly attacks on Ukrainian targets. Plaintiffs seek damages to hold the firms accountable and disrupt illicit supply chains.

27. maaliskuuta 2026 20.33

Ubuntu 26.10 proposal targets ZFS, RAID and encryption in Secure Boot GRUB

26. helmikuuta 2026 11.39

Zyxel warns of critical RCE flaw in over a dozen routers

18. helmikuuta 2026 11.16

Dell zero-day flaw unpatched for nearly two years

14. helmikuuta 2026 05.59

Firmware upstreamed for Linux speaker support on ASUS Zenbook 14 UM3406GA

10. helmikuuta 2026 10.59

BeyondTrust RCE flaw enables code execution without login

4. helmikuuta 2026 10.58

More than 40,000 WordPress sites affected by malware flaw

16. tammikuuta 2026 05.43

Asus backtracks on ending sales of RTX 5070 Ti GPUs

15. tammikuuta 2026 20.12

Asus stops producing RTX 5070 Ti and 5060 Ti 16GB GPUs

2. tammikuuta 2026 07.53

AI demand prompts gaming hardware price hikes in 2026

28. joulukuuta 2025 02.12

Maxsun’s mini-ITX motherboard rivals NVIDIA’s AI mini PC

 

 

 

Tämä verkkosivusto käyttää evästeitä

Käytämme evästeitä analyysiä varten parantaaksemme sivustoamme. Lue tietosuojakäytäntömme tietosuojakäytäntö lisätietoja varten.
Hylkää