Reply to post: Re: Let's not go overboard with this.

Decoding the Chinese Super Micro super spy-chip super-scandal: What do we know – and who is telling the truth?

OldCrow
Meh

Re: Let's not go overboard with this.

we aren't getting the full story yet

Uhh... yes, we are. Getting the full story, that is. The full story is: "China switched out a memory chip. Did a delayed BIOS driver-switch attack." (Vector is actually named Microsoft Windows Platform Binary Table, not Superfish, which is a separate piece of malware. My apologies for mixing them up.)

You can get full control of the server just by making it load an infected driver before OS boot, via e.g. UEFI option-ROM.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019