Most MSI motherboards will allow any code to run in a bizarrely insecure Secure Boot mode

The Secure Boot feature on as many as 300 MSI motherboards reportedly doesn’t work as you might expect—or as the feature is intended. Specifically, the motherboards will allow unvalidated firmware and operating systems to load when Secure Boot is enabled.

Open source security researcher Dawid Potocki (via El Reg (opens in new tab)) first discovered the problem when attempting to set up Secure Boot on an MSI PRO Z790-A WIFI. “Unfortunately I found my firmware was accepting every OS image I gave it, no matter if it was trusted or not,” says Potocki.

Latest Stories


Related articles