Skip to main content
  1. Home
  2. Computing
  3. News

A massive data breach has left Intel scrambling for solutions

By

A security breach in March robbed MSI of up to 1.5TB of sensitive data. However, MSI is not the only company impacted.

As a result of the breach, Intel is now investigating a major leak of Intel Boot Guard keys. The extent of the damage is still unclear, but the worst-case scenario is that the security feature is now useless on compromised devices — and that’s a pretty lengthy list.

Recommended Videos

⛓️Digging deeper into the aftermath of the @msiUSA data breach and its impact on the industry.

🔥Leaked Intel BootGuard keys from MSI are affecting many different device vendors, including @Intel , @Lenovo, @Supermicro_SMCI, and many others industry-wide.

🔬#FwHunt is on! https://t.co/NuPIUJQUgr pic.twitter.com/ZB8XKj33Hv

— BINARLY🔬 (@binarly_io) May 5, 2023

Related

This whole fiasco seems to have begun with the MSI data breach that took place earlier this year. The Money Message extortion gang targeted MSI in March, saying that it managed to steal around 1.5TB of sensitive data. It demanded a ransom of $4 million to not leak the data to the public.

MSI refused to give in and didn’t pay the ransom, and unfortunately, the hacker gang followed through and started leaking the firmware source code of MSI’s motherboards.

According to Alex Matrosov, the CEO of Binarly, a security platform, the source code may have contained some really sensitive information, such as Intel Boot Guard private keys for 116 MSI products.

Intel Boot Guard prevents the loading of malicious firmware on Intel hardware. The fact that it’s now compromised makes this as much Intel’s problem as it is MSI’s. If threat actors gain access to these keys, they might be able to create powerful malware that’s capable of bypassing Intel’s security measures.

Matrosov claims that Intel Boot Guard may now be ineffective on some of Intel’s best processors, including Tiger Lake, Alder Lake, and Raptor Lake chips running on MSI-based devices.

A render of an Intel Core HX chip.
Image used with permission by copyright holder

In a statement to Bleeping Computer, Intel said: “Intel is aware of these reports and actively investigating. There have been researcher claims that private signing keys are included in the data, including MSI OEM Signing Keys for Intel BootGuard. It should be noted that Intel BootGuard OEM keys are generated by the system manufacturer, and these are not Intel signing keys.”

It’s hard to say precisely how big of an impact this leak might have. It’s possible that it opened the door to the creation of malware that can skip right past Intel Boot Guard, and that could be dangerous for affected devices.

If you’re using a build with an MSI motherboard and an Intel chip, take the usual security measures to stay safe. This includes not downloading files from sources you don’t trust and regularly scanning your computer with antivirus software, if you’re using any. We’ll have to wait for Intel and MSI to share more information on the data breach in order to know what happens next.

Editors’ Recommendations

Topics
Monica J. White
Monica J. White
Computing Writer
Monica is a computing writer at Digital Trends, focusing on PC hardware. Since joining the team in 2021, Monica has written…
You may be a victim in one of the worst data breaches in history
A person using a laptop with a set of code seen on the display.

Background check company National Public Data -- also known as Jerico Pictures -- suffered what is reportedly one of the most significant data breaches in history, affecting 2.9 billion personal records that leaked sensitive data such as Social Security numbers and more, as mentioned in a class-action lawsuit document and sourced by Bloomberg Law. What's even worse is that it's not known how the breach happened in the first place -- or who has been included in it.

Before getting into it, it's worth noting that National Public Data has not confirmed the breach yet, so there's a lot of information that's only coming from the lawsuit or the hacking group. That means some of the figures will need to be taken with a grain of salt. Still, it doesn't sound good.

Read more
I grilled Intel about its massive stability problem — here’s what it told me
intel instability unanswered questions dt respec

Intel is in trouble. We've known there was a problem for months, but the true scope of the issue is coming into focus. Intel has finally said a microcode update that will solve the instability problem is on the way, but it won't be here for several weeks. It's not much of a resolution, either -- I still have a lot of questions about Intel's instability problem, and how it plans to address the issue going forward.

I've sent the list of questions below to Intel for a response, and in cases where Intel has responded, I'll provide the exact quote. We've definitely seen some shifty communication from Intel regarding the instability issue up to this point, so I'll fill in the gaps if there's anywhere Intel wasn't able to provide a solid answer.
How will this impact performance?

Read more
AMD just suffered a massive data breach that could reveal future products
AMD's Scott Herkalman presenting the RX 7800 XT graphics card.

AMD is currently investigating a potentially massive data breach. The company said on Tuesday that it has begun investigating the breach, following a report from The Cyber Express that featured blurred screenshots of the allegedly stolen data. It's not clear how large the scale of the breach is, but it's said to contain details on future products, customer databases, employee information, and other confidential data.

"We are aware of a cybercriminal organization claiming to be in possession of stolen AMD data," AMD said in a statement shared with Bloomberg. "We are working closely with law enforcement officials and a third-party hosting partner to investigate the claim and the significance of the data."

Read more