Microsoft: Work with AMD, Intel and Qualcomm to develop tools that detect malware in the BIOS and firmware

[[Nike]]

Malicious attackers have evolved, they no longer want to damage the systems, they prefer other techniques. Kidnapping a system is also not a cost effective solution, the most important thing is data interception. That is why there are more and more elements running in the background stealing data. More and more hackers attack firmware, more vulnerable, as is the case with UEFI BIOS.

The reason they focus on the BIOS is that it is the cornerstone of the entire system. The BIOS has privileged access to all components and can modify or adjust parameters. Also, deleting a malware inside the BIOS is complicated, even reinstalling the firmware in the BIOS itself.

Hackers increasingly choose to infect the BIOS

Microsoft knows this trend and increased security efforts due to the increase in these attacks. To get an idea in 2016, there were only seven attacks focused on firmware. Between 2017 and 2019 there have been more than 400 attacks per year of this type.

To increase the security of users Microsoft has started a consortium called ‘secure core’. This consortium has Intel, AMD and Qualcomm, who will collaborate to keep Windows systems safe.

AMD has even announced new security measures for systems startup. Windows 10 for its part will have a secure boot system protection system or SGSL based on Windows Defender. A dynamic trust root protection (DRTM) protection system must be installed at the processor level. Said system will allow to detect any type of firmware mani[CENSORED]tion in the same boot.

Intel currently offers some processors such as the Core i7-8265U with vPro technology designed for this precept. A technology that is expected to expand to other processors