"A Massive Data Breach Has Left Intel Scrambling For Solutions"

A security breach in March robbed MSI of up to 1.5TB of sensitive data.  However, MSI is not the only company impacted.  As a result of the breach, Intel is now investigating a major leak of Intel Boot Guard keys.  The extent of the damage is still unclear, but the worst-case scenario is that the security feature is now useless on compromised devices.  This whole fiasco seems to have begun with the MSI data breach that took place earlier this year.  Intel Boot Guard prevents the loading of malicious firmware on Intel hardware.  The fact that it’s now compromised makes this as much Intel’s problem as it is MSI’s.  According to Alex Matrosov, the CEO of Binarly, a security platform, if threat actors gain access to these keys, they might be able to create powerful malware that’s capable of bypassing Intel’s security measures.  Matrosov claims that Intel Boot Guard may now be ineffective on some of Intel’s best processors, including Tiger Lake, Alder Lake, and Raptor Lake chips running on MSI-based devices.  In a statement to Bleeping Computer, Intel said: “Intel is aware of these reports and actively investigating.  There have been researcher claims that private signing keys are included in the data, including MSI OEM Signing Keys for Intel BootGuard.  It should be noted that Intel BootGuard OEM keys are generated by the system manufacturer, and these are not Intel signing keys.”  We’ll have to wait for Intel and MSI to share more information on the data breach in order to know what happens next.

Digital Trends reports: "A Massive Data Breach Has Left Intel Scrambling For Solutions"