Overclock.net › Forums › Industry News › Hardware News › [The Register] Gigabyte BIOS blight fright: Your megabytes’ rewrite plight in the spotlight
New Posts  All Forums:Forum Nav:

[The Register] Gigabyte BIOS blight fright: Your megabytes’ rewrite plight in the spotlight

post #1 of 52
Thread Starter 
Quote:
Gigabyte has been swept into turmoil surrounding low-level security vulnerabilities that allows attackers to kill flash protection, secure boot, and tamper with firmware on PCs by Lenovo and other vendors.
Quote:
Unconfirmed reports suggest the hardware vendor has used the "ThinkPwn" vulnerable code, thought to be born of Intel reference code, on four of its motherboards: Z68-UD3H, Z77X-UD5H, Z87MX-D3H, and Z97-D3H.

Source

Hope GigaByte fixes this soon rolleyes.gif

Sounds like GB is still digging into this, but anxious to see what they do about it.
The Grey Box
(22 items)
 
  
CPUMotherboardGraphicsRAM
3770k delid 4.6 at 1.25 Gigabyte Z77X-UD5H Gigabyte 1080 Ti Aorus Xtreme Corsair Vengeance 
Hard DriveHard DriveHard DriveCooling
Intel 730 WD20002FAEX Raid1 Samsung 850 Pro Heatkiller 3.0 
CoolingCoolingCoolingCooling
DDC-1 & Swiftech Micro Res x3 HW Labs GTX 360 Radiator (Pelts Hot Side) Aquacomputer Aquaero 6 XT Coolit FreeZone (pelts & pelt water block only) 
CoolingCoolingOSMonitor
Custom Copper Heat Exchanger For Pelts HW Labs 120 Radiator (VGA) Win7 64/Linux SuSe Samsung 22" 1080 
KeyboardPowerCaseMouse
Saitek Eclipse II EVGA supernova 750 G2 Coolermaster Cosmos V1 Logitech mx518 
Mouse Pad
Allsop 
  hide details  
Reply
The Grey Box
(22 items)
 
  
CPUMotherboardGraphicsRAM
3770k delid 4.6 at 1.25 Gigabyte Z77X-UD5H Gigabyte 1080 Ti Aorus Xtreme Corsair Vengeance 
Hard DriveHard DriveHard DriveCooling
Intel 730 WD20002FAEX Raid1 Samsung 850 Pro Heatkiller 3.0 
CoolingCoolingCoolingCooling
DDC-1 & Swiftech Micro Res x3 HW Labs GTX 360 Radiator (Pelts Hot Side) Aquacomputer Aquaero 6 XT Coolit FreeZone (pelts & pelt water block only) 
CoolingCoolingOSMonitor
Custom Copper Heat Exchanger For Pelts HW Labs 120 Radiator (VGA) Win7 64/Linux SuSe Samsung 22" 1080 
KeyboardPowerCaseMouse
Saitek Eclipse II EVGA supernova 750 G2 Coolermaster Cosmos V1 Logitech mx518 
Mouse Pad
Allsop 
  hide details  
Reply
post #2 of 52
Even if they do, how many people are actually updating their board firmware?
I'll bet the almost overwhelming majority had never updated their board firmware even on their several good years old motherboards.
Main system
(16 items)
 
Editing PC
(8 items)
 
 
CPUGraphicsGraphicsRAM
E5-1680v2 AMD FirePro D700 AMD FirePro D700 64GB 1866mhz 
Hard DriveOSMonitorCase
1TB PCIE SSD OSX 10.10.x Dell U2713H Mac Pro 
  hide details  
Reply
Main system
(16 items)
 
Editing PC
(8 items)
 
 
CPUGraphicsGraphicsRAM
E5-1680v2 AMD FirePro D700 AMD FirePro D700 64GB 1866mhz 
Hard DriveOSMonitorCase
1TB PCIE SSD OSX 10.10.x Dell U2713H Mac Pro 
  hide details  
Reply
post #3 of 52
This seems like more of a target of say edus, libarys where you might be able to do somthing pretty fast without anyone knowing with the malware/virus in the bios even if you format a 1000 times it will always be reinfected. Attacks over the internet seem like they will be much harder because first you gota find a way into the pc thru something else.

http://security.stackexchange.com/questions/129122/what-is-the-thinkpwn-vulnerability-and-what-does-it-allows-attackers-to-do
SABERWOLF
(18 items)
 
XEON-WOLF
(18 items)
 
 
CPUMotherboardGraphicsRAM
Intel Core i7-6800K MSI X99A GAMING PRO CARBON EVGA GTX 1080 FTW Hydro Copper G.SKILL TridentZ Series 
Hard DriveCoolingCoolingCooling
Samsung EVO 850 500 EK-SBAY Dual DDC 3.2 PWM Serial Alphacool NexXxoS ST30 Full Copper Radiator 360 Hardware Labs Black Ice SR2 Multiport Black Car... 
CoolingCoolingOSMonitor
EK-CoolStream RAD XTC 420 koolance 380i Windows 10 Pro ASUS VW246H Black 24" 2ms 
PowerCaseMouseAudio
SeaSonic M12D SS-850 850W  Thermaltake core x71 CM Storm Sentinel Advance II Corsair Void 
CPUMotherboardGraphicsRAM
X5675@4400 1.344 ASUS P6X58D-E XfX RX480 RS F3-12800CL7T-6GBPI 6-7-6-21 1T 
RAMHard DriveHard DriveHard Drive
F3-12800CL9S-4GBRL WDC WD1001FALS-00J7B1 ST31000340AS WDC WD7500AAKS-00RBA0 
Hard DriveOptical DriveCoolingOS
Hitachi HDS723020BLA642 ihas 624-A SilverStone Heligon HE01 windows 10 64 Pro 
MonitorPowerCase
Vizio 42inch lcd tv CORSAIR CMPSU-950TX Modded Rocketfish 
  hide details  
Reply
SABERWOLF
(18 items)
 
XEON-WOLF
(18 items)
 
 
CPUMotherboardGraphicsRAM
Intel Core i7-6800K MSI X99A GAMING PRO CARBON EVGA GTX 1080 FTW Hydro Copper G.SKILL TridentZ Series 
Hard DriveCoolingCoolingCooling
Samsung EVO 850 500 EK-SBAY Dual DDC 3.2 PWM Serial Alphacool NexXxoS ST30 Full Copper Radiator 360 Hardware Labs Black Ice SR2 Multiport Black Car... 
CoolingCoolingOSMonitor
EK-CoolStream RAD XTC 420 koolance 380i Windows 10 Pro ASUS VW246H Black 24" 2ms 
PowerCaseMouseAudio
SeaSonic M12D SS-850 850W  Thermaltake core x71 CM Storm Sentinel Advance II Corsair Void 
CPUMotherboardGraphicsRAM
X5675@4400 1.344 ASUS P6X58D-E XfX RX480 RS F3-12800CL7T-6GBPI 6-7-6-21 1T 
RAMHard DriveHard DriveHard Drive
F3-12800CL9S-4GBRL WDC WD1001FALS-00J7B1 ST31000340AS WDC WD7500AAKS-00RBA0 
Hard DriveOptical DriveCoolingOS
Hitachi HDS723020BLA642 ihas 624-A SilverStone Heligon HE01 windows 10 64 Pro 
MonitorPowerCase
Vizio 42inch lcd tv CORSAIR CMPSU-950TX Modded Rocketfish 
  hide details  
Reply
post #4 of 52
Z97X UD3H right here......hopefully I'm not affected..... redface.gif
post #5 of 52
I have a Gigabyte .. but its a GPU

my old Z77 board is an ASRock thankfully
The Green Beast
(16 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 3770K @ 4500 Mhz ASRock Z77 Pro3 Gigabyte GTX 1080 G1 Gaming Crucial Ballistix 2x8GB DDR3-1600 
Hard DriveHard DriveHard DriveCooling
SSD Crucial M550 500GB SSD Samsung 850 Evo 1TB HDD Seagate 7200rpm 3TB Cooler Master Hyper 212 EVO; Xilence X5 
OSMonitorKeyboardPower
Windows 10 Pro 64-bit Acer Predator XB271HU 27" IPS Gsync 1440p 165Hz CM Storm QuickFire XT Cherry Red 800W modular 
CaseMouseMouse PadAudio
Fractal Design Define R4 Black Logitech G900 Chaos Spectrum SteelSeries QcK+ 4mm SK Gaming Realtek On-board 
  hide details  
Reply
The Green Beast
(16 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 3770K @ 4500 Mhz ASRock Z77 Pro3 Gigabyte GTX 1080 G1 Gaming Crucial Ballistix 2x8GB DDR3-1600 
Hard DriveHard DriveHard DriveCooling
SSD Crucial M550 500GB SSD Samsung 850 Evo 1TB HDD Seagate 7200rpm 3TB Cooler Master Hyper 212 EVO; Xilence X5 
OSMonitorKeyboardPower
Windows 10 Pro 64-bit Acer Predator XB271HU 27" IPS Gsync 1440p 165Hz CM Storm QuickFire XT Cherry Red 800W modular 
CaseMouseMouse PadAudio
Fractal Design Define R4 Black Logitech G900 Chaos Spectrum SteelSeries QcK+ 4mm SK Gaming Realtek On-board 
  hide details  
Reply
post #6 of 52
Quote:
Originally Posted by Bal3Wolf View Post

Attacks over the internet seem like they will be much harder because first you gota find a way into the pc thru something else.
Intel ME wheee.gif http://www.overclock.net/t/1603524/hnn-softpedia-new-intel-cpus-have-nsa-exploitable-secret-hidden-backdoor
Quote:
It works but setting up a TCP/IP server and since the subsystem has complete uncontrolled access to your computer’s hardware, including the network card and memory, it works without the knowledge of your computers operating system and can not be disabled by the OS or by your computer’s firewall.
Note that this issue is not connected to ME atm, this post is FUD...
post #7 of 52
Just read it about Lenovo but details were given about Gigabyte. Intel mess up, just like the ever present ME spying/remote control BS.
post #8 of 52
It affects a LOT of vendors, https://github.com/Cr4sh/ThinkPwn.. article is sensational "swept into turmoil"
Quote:
For example, here you can see SmmRuntimeManagementCallback() function from Intel Quark BSP -- it's exactly the same vulnerable code
...
Lenovo released advisory for this vulnerability, they claims that vulnerable code written by Intel was received from 3-rd party IBV (Independent BIOS Vendor):
...
One of my followers confirmed that vulnerable code is present in his HP Pavilion laptop:
...
Alex James found vulnerable code on motherboards from GIGABYTE (Z68-UD3H, Z77X-UD5H, Z87MX-D3H, Z97-D3H and many others):
..
Japaneese researcher known as 173210 found vulnerable code in firmware of Fujitsu LIFEBOOK A574/H, other Fujitsu computers probably affected as well:
....
Kasey Smith figured that Dell Latitude E6430 is also vulnerable, it means that other computers from Dell might be affected as well:
Boat Anchor
(11 items)
 
OC'in beast
(21 items)
 
 
CPUMotherboardGraphicsRAM
AMD Threadripper 1950x Alienware Area-51 TR edition Vega Frontier (flashed to RX 64) Micron 16GB DDR4-2666 
Hard DriveOSMonitorKeyboard
WD Blue SSD Windows 10 RS3 Dell P4317Q Cooler Master QuickFire Cherry Brown 
PowerCaseMouse
Dell 1500W Alienware Area-51 Logitech MX5500 
CPUMotherboardGraphicsGraphics
AMD FX-8350 (Vishera) Gigabyte GA-990XA AMD 285X (unreleased) AMD 285X (unreleased) 
RAMHard DriveHard DriveHard Drive
Mushkin Enhanced Blackline 8GB (996679) Western Digital WD10EALS 1TB Blue Corsair Force Series GT CSSD-F180GBGT-BK 180GB Intel 530 Series SSDSC2BW240A401 240GB 
Optical DriveCoolingCoolingCooling
Sony 20X Sata DVD-RW Scythe Mugen 2 rev B (3) Scythe Slip Stream SY1225SL12H-P Antec Tri-Cool 140mm 
CoolingCoolingOSMonitor
Antec Tri-Cool 120mm Scythe Ultra Kaze DFS123812-3000 Windows 7 Pro 64bit ASUS PA248Q 24.1" IPS 
KeyboardPowerCaseMouse
Coolermaster Storm QuickFire Stealth Cherry MX ... Antec Earthwatts EA-750 Antec 300 Logitech G5 
Mouse Pad
Steel Series Starcraft 2 Marine 
  hide details  
Reply
Boat Anchor
(11 items)
 
OC'in beast
(21 items)
 
 
CPUMotherboardGraphicsRAM
AMD Threadripper 1950x Alienware Area-51 TR edition Vega Frontier (flashed to RX 64) Micron 16GB DDR4-2666 
Hard DriveOSMonitorKeyboard
WD Blue SSD Windows 10 RS3 Dell P4317Q Cooler Master QuickFire Cherry Brown 
PowerCaseMouse
Dell 1500W Alienware Area-51 Logitech MX5500 
CPUMotherboardGraphicsGraphics
AMD FX-8350 (Vishera) Gigabyte GA-990XA AMD 285X (unreleased) AMD 285X (unreleased) 
RAMHard DriveHard DriveHard Drive
Mushkin Enhanced Blackline 8GB (996679) Western Digital WD10EALS 1TB Blue Corsair Force Series GT CSSD-F180GBGT-BK 180GB Intel 530 Series SSDSC2BW240A401 240GB 
Optical DriveCoolingCoolingCooling
Sony 20X Sata DVD-RW Scythe Mugen 2 rev B (3) Scythe Slip Stream SY1225SL12H-P Antec Tri-Cool 140mm 
CoolingCoolingOSMonitor
Antec Tri-Cool 120mm Scythe Ultra Kaze DFS123812-3000 Windows 7 Pro 64bit ASUS PA248Q 24.1" IPS 
KeyboardPowerCaseMouse
Coolermaster Storm QuickFire Stealth Cherry MX ... Antec Earthwatts EA-750 Antec 300 Logitech G5 
Mouse Pad
Steel Series Starcraft 2 Marine 
  hide details  
Reply
post #9 of 52
Oh great... my Z97X-UD5H-BK might be affected by this.
 
The Lemon
(16 items)
 
The Sloth
(13 items)
 
CPUMotherboardGraphicsRAM
Intel i7 4790K Gigabyte Z97X-UD5H-BK ASUS GeForce GTX 980 Strix Kingston HyperX Savage 32GB (4 x 8GB) DDR3-1600 
Hard DriveOptical DriveCoolingOS
Samsung 850 Pro 512GB Lite-On iHBS212  Noctua NH-U14S Windows 7 Ultimate 
MonitorMonitorMonitorKeyboard
Hanns.G HZ281 28" LCD Hanns.G HZ281 28" LCD Hanns.G HZ281 28" LCD Logitech Illuminated Keyboard K740 
PowerCaseMouseMouse Pad
Super Flower Golden King 650W Silverstone Fortress FT02 Logitech G3 Cold Beer Mouse Pad 
AudioAudio
Auzentech X-Meridian 7.1 1G Logitech Z-5500 
CPUMotherboardGraphicsRAM
Intel Core 2 Quad Q6600 Asus P5K Deluxe Gigabyte Radeon HD 6850 GV-R685OC-1GD Mushkin Enhanced Blackline 4GB (2 x 2GB) DDR2 800 
Hard DriveOptical DriveCoolingOS
Samsung 830 256GB LG GH22NP20 Thermaltake Big Typhoon Windows 7 Ultimate 
MonitorKeyboardPowerCase
LG Flatron 246WH Topre XF01T0 Antec TruePower 650W Antec P183V3 
MouseMouse PadAudioAudio
Logitech Performance Mouse MX Organic Mouse Pad Auzentech X-Plosion 7.1 Creative Labs 5300 Inspire 5.1 
CPUMotherboardRAMHard Drive
Intel i3 2100 Asus P8H67-M PRO Kingston Valueram 8GB (2 x 4GB) DDR3 1333 Samsung 830 256GB 
Optical DriveCoolingOSMonitor
Plextor PX-B940SA Noctua NH-L12 Windows 7 Ultimate Samsung UN55F7100 LED HDTV 
KeyboardPowerCaseAudio
IOGEAR GKM561R Super Flower Golden Silent 430W Lian Li PC-V355-B Auzentech X-Meridian 7.1 1G 
Audio
Onkyo HT-S9700THX 7.1 
  hide details  
Reply
 
The Lemon
(16 items)
 
The Sloth
(13 items)
 
CPUMotherboardGraphicsRAM
Intel i7 4790K Gigabyte Z97X-UD5H-BK ASUS GeForce GTX 980 Strix Kingston HyperX Savage 32GB (4 x 8GB) DDR3-1600 
Hard DriveOptical DriveCoolingOS
Samsung 850 Pro 512GB Lite-On iHBS212  Noctua NH-U14S Windows 7 Ultimate 
MonitorMonitorMonitorKeyboard
Hanns.G HZ281 28" LCD Hanns.G HZ281 28" LCD Hanns.G HZ281 28" LCD Logitech Illuminated Keyboard K740 
PowerCaseMouseMouse Pad
Super Flower Golden King 650W Silverstone Fortress FT02 Logitech G3 Cold Beer Mouse Pad 
AudioAudio
Auzentech X-Meridian 7.1 1G Logitech Z-5500 
CPUMotherboardGraphicsRAM
Intel Core 2 Quad Q6600 Asus P5K Deluxe Gigabyte Radeon HD 6850 GV-R685OC-1GD Mushkin Enhanced Blackline 4GB (2 x 2GB) DDR2 800 
Hard DriveOptical DriveCoolingOS
Samsung 830 256GB LG GH22NP20 Thermaltake Big Typhoon Windows 7 Ultimate 
MonitorKeyboardPowerCase
LG Flatron 246WH Topre XF01T0 Antec TruePower 650W Antec P183V3 
MouseMouse PadAudioAudio
Logitech Performance Mouse MX Organic Mouse Pad Auzentech X-Plosion 7.1 Creative Labs 5300 Inspire 5.1 
CPUMotherboardRAMHard Drive
Intel i3 2100 Asus P8H67-M PRO Kingston Valueram 8GB (2 x 4GB) DDR3 1333 Samsung 830 256GB 
Optical DriveCoolingOSMonitor
Plextor PX-B940SA Noctua NH-L12 Windows 7 Ultimate Samsung UN55F7100 LED HDTV 
KeyboardPowerCaseAudio
IOGEAR GKM561R Super Flower Golden Silent 430W Lian Li PC-V355-B Auzentech X-Meridian 7.1 1G 
Audio
Onkyo HT-S9700THX 7.1 
  hide details  
Reply
post #10 of 52
Why is it always Lenovo that I hear about with these things? I thought they were the "enterprise-ish" OEM, you know, who took this stuff slightly more seriously than HP or Dell or Acer.

Maybe it's because they ship the most systems, they get targeted more? Or because the systems are more common, they're more often tested for vulnerabilities? Or, is it just carelessness at Lenovo? Whatever Sailfish or Snapfish or whatever the crap-fish surprised me a little bit.

--

Anyways, as a Z87X-UD5H owner, I hope Gigabyte puts out a public comment. Do we need patches?

The actual sauce: https://github.com/Cr4sh/ThinkPwn
The 2013 Build
(14 items)
 
  
CPUMotherboardGraphicsRAM
--- SOLD --- --- SOLD ---  --- SOLD --- --- SOLD --- 
Hard DriveOptical DriveCoolingOS
Samsung 850 EVO 500GB ASUS DRW-24B3ST (24X DVD burner) Noctua NH-U14S w/ NH-T1 TIM Windows 10 Pro (x64) 
MonitorKeyboardPowerCase
ASUS VG248QE w/ Lightboost @ 120Hz Ducky Shine III (MX Brown w/ Red backlights) Kingwin LZP-1000 (1000W) PSU Corsair Carbide Air 540 
Mouse Pad
Razer Goliathus (Precision Control model) - Sta... 
  hide details  
Reply
The 2013 Build
(14 items)
 
  
CPUMotherboardGraphicsRAM
--- SOLD --- --- SOLD ---  --- SOLD --- --- SOLD --- 
Hard DriveOptical DriveCoolingOS
Samsung 850 EVO 500GB ASUS DRW-24B3ST (24X DVD burner) Noctua NH-U14S w/ NH-T1 TIM Windows 10 Pro (x64) 
MonitorKeyboardPowerCase
ASUS VG248QE w/ Lightboost @ 120Hz Ducky Shine III (MX Brown w/ Red backlights) Kingwin LZP-1000 (1000W) PSU Corsair Carbide Air 540 
Mouse Pad
Razer Goliathus (Precision Control model) - Sta... 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Hardware News
Overclock.net › Forums › Industry News › Hardware News › [The Register] Gigabyte BIOS blight fright: Your megabytes’ rewrite plight in the spotlight