Intel Boot Guard private keys have reportedly leaked, compromising the security of many computers

pcgamer.com:

It seems like every other day there are scumbags out there perpetrating a new hack, taking advantage of a vulnerability or trying to extort people with ransomware. MSI is the latest victim, with hackers leaking material stolen from a breach of MSI's systems last month(opens in new tab).

This one has the potential to be serious. According to tweets by Alex Matrosov(opens in new tab), the founder of Binarly(opens in new tab), at least some of the previously stolen 1.5TB of data has been leaked. The data includes private keys, some of which appear to be Intel Boot Guard keys. The leak of such keys doesn't just affect MSI systems, but those from other vendors too, including Lenovo and Supermicro.

Boot Guard is a cryptography technology designed to protect PCs from executing fake UEFI firmware or modified BIOS. Should an attacker bypass these checks, they could gain full access to a system, access secure data or use it for any number of scummy purposes.

The use of UEFI keys is especially concerning given the risk of so-called secondary downloads. Using traditional phishing or email delivery techniques, any malware developed subsequent to a firmware update using these keys would appear to be genuine, and antivirus software would ignore it.

Best gaming PC(opens in new tab): The top pre-built machines from the prosBest gaming laptop(opens in new tab): Perfect notebooks for mobile gaming

The release of the data comes after a group calling itself Money Message claimed responsibility for the breach of MSI's internal systems (via Bleeping Computer(opens in new tab)). The group demanded a $4,000,000 payment from MSI. The release of the data would suggest that MSI didn't pay up.

The fallout from this leak will take time to analyze,