🚨New! "PKFail: Untrusted Platform Keys Undermine Secure Boot on UEFI Ecosystem."
#PKfail
is a supply-chain issue affecting x86/ARM devices around the globe.
Blog:
Full report:
A free scanning tool:
🏆Our REsearch team is proud to have stepped onto the
@LABScon_io
keynote stage for the third year!
🔐Huge shoutout to our speakers,
@pagabuc
and
@matrosov
, who presented “
#PKFAIL
: Supply-Chain Failures in Secure Boot Key Management.”
🔥slides:
Traditional static analysis tools will not help beyond simple SDLC cases. The CodeQL datalog approach is cool, but only a few people can develop valuable rules on it. Semgrep isn't very helpful beyond simple cases with its taint analysis limitations on C/C++ & performance issues.
IDAlib is the first idiomatic Rust bindings library for
@HexRaysSA
IDA SDK, helping go beyond C/C++ or Python in RE automation. Huge thanks to
@xorpse
for making it happen! Binarly team ❤️ Rust 🙌
🛠️use idalib::idb::*;
🦀
Our REsearch team is thrilled about the new IDA v9.0!
#efiXplorer
is fully compatible with v9.0 and still supports IDA v8.4🚀
🔬
We are thrilled to announce IDAlib — idiomatic Rust bindings for the IDA SDK 🎉 Kudos to
@xorpse
!
⚙️
🔐Update on
#PKfail
! Our detection service has scanned over 10,336 unique firmware images and detected 869 impacted instances — that’s 8.4%!
All detected unique keys are now showcased on the service👇
🚨New! "CVE-2024-36435 Deep-Dive: The Year’s Most Critical BMC Security Flaw."
🔥Classic buffer overflow vulnerabilities resurface in BMCs, remotely opening the gates from the castle.
🏆Kudos to
@AlexTereshkin
for the initial discovery and disclosure!
We're always on the hunt for innovative startups with game-changing solutions.
Check out the companies w/cutting-edge tech, making sure
@Cisco
customers have the best tools to stay ahead and discover new business opportunities.👇
🔗
#CiscoInvests
⛓️
@binarly_io
's
@matrosov
and
@pagabuc
unveiled PKFAIL, a critical firmware supply-chain issue affecting hundreds of devices due to vendors shipping default test keys.
#LABScon24
📄 Read more about their research in a blog post published the same day:
🚨In just a few hours at
#LABScon
, we’ll be unveiling a high-impact vulnerability and a critical security discovery affecting platform trust on Supermicro servers. Stay tuned and watch our REsearch blog!
🚨In just a few hours at
#LABScon
, we’ll be unveiling a high-impact vulnerability and a critical security discovery affecting platform trust on Supermicro servers. Stay tuned and watch our REsearch blog!
We believe in giving back to the research community that drives progress! We are proud to support OpenSecurityTraining2 in advancing security education and knowledge sharing.
More updates will be coming tomorrow at the
#LABScon
stage. The problems related to the test and non-production keys are much bigger than we initially thought.
🚨NEW: "PKfail Two Months Later: Reflecting on the Impact." by
@pagabuc
Based on data 📈
🖥️10,095 unique firmware images uploaded
🔥791 of which contained an untrusted PK
🛟9304 is safe
💥8.5% vulnerable rate
🔬Full report: