"MSI Accidentally Breaks Secure Boot for Hundreds of Motherboards"

According to a Polish security researcher named Dawid Potocki, more than 290 MSI motherboards are impacted by insecure default UEFI Secure Boot settings, which enable any operating system image to execute regardless of whether it has a valid or invalid signature. Potocki says the issue affects many Intel and AMD-based MSI motherboards that use a recent firmware version, including brand-new MSI motherboard models. Released on January 18, 2022, MSI firmware update version 7C02v3C changed the Secure Boot default setting on MSI motherboards so that the machine will boot even if it detects security violations. Secure Boot is a security feature of UEFI motherboard firmware that assures that only trusted (signed) software can execute during the boot process. When the computer boots, the firmware verifies the signature of all boot software, including UEFI firmware drivers, EFI programs, and the operating system. This article continues to discuss the default MSI settings causing insecure boots and impacting over 290 MSI motherboards.

Bleeping Computer reports "MSI Accidentally Breaks Secure Boot for Hundreds of Motherboards"