cross-posted from: https://feddit.de/post/721048

“While Eclypsium says the hidden code is meant to be an innocuous tool to keep the motherboard’s firmware updated, researchers found that it’s implemented insecurely, potentially allowing the mechanism to be hijacked and used to install malware instead of Gigabyte’s intended program.”

  • Solstice
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    2 years ago

    Disable it using registry edit:

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager]
    "DisableWpbtExecution"=dword:00000001