Paul's Security Weekly Subscribe

Security Staff Acquisition & Development, Endpoint/Device Security, Threat Management

UEFI & SMM Vulnerabilities – Jesse Michael – PSW #764

November 16, 2022

Navigating the UEFI waters is treacherous. While UEFI has become the standard on most PCs, servers, and laptops, replacing legacy BIOS, it is a complex set of standards and protocols. Jesse joins us to help explain how some of this works and describe how vulnerabilities, specifically with SMM, can manifest and be exploited.

Segment Resources: CHIPSEC GitHub

Full episode and show notes

Announcements

Join our cybersecurity community on Discord! Connect directly with our expert hosts, join discussions with fellow audience members, and customize your notifications to receive alerts every time an episode of your favorite show publishes. Get your invite at securityweekly.com/discord!

Guest

Principal Researcher at Eclypsium

Jesse Michael is an experienced security researcher focused on vulnerability detection and mitigation who has worked at all layers of modern computing environments from exploiting worldwide corporate network infrastructure down to hunting vulnerabilities inside processors at the hardware design level. His primary areas of expertise include reverse engineering embedded firmware and exploit development. He has also presented research at DEF CON, Black Hat, PacSec, Hackito Ergo Sum, Ekoparty, and BSides Portland.

Hosts

Paul Asadoorian

Principal Security Researcher at Eclypsium

https://securitypodcaster.com

Sr. InfoSec Consultant at Online Business Sytems

https://www.obsglobal.com/

Executive Director at Guardedrisk

Product Security Research and Analysis Director at Finite State

@haxorthematrix

https://www.finitestate.io/

https://breakstuffforfun.com/

Brainstem Hacker and InfoSec Enthusiast at Redacted

@survivatrix#0613

Founder at Infosec Decoded, Inc.

https://samsclass.info/

Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

http://darkelement.io/

Related

Final fundings for 2024, Blackberry sells Cylance cheap, Product Testing Drama – ESW #388

December 19, 2024

In the enterprise security news, a final few fundings before the year closes out Arctic Wolf buys Cylance from Blackberry for cheap, a sentence that feels very weird to say the quiet HTTPS revolution passkeys are REALLY catching on resilience keeps showing up in the titles of news items Apple Intelligence insults the BBC’s intelligence MITRE ATT...

Day in the Life of a CISO, as They Consider Personal Risks and New Defenses in 2025 – BSW #376

December 16, 2024

In the leadership and communications segment, CISOs need to consider the personal risks associated with their role, CISOs: Don’t rely solely on technical defences in 2025, The Questions Leaders Need to Be Asking Themselve, and more!

The 2024 Cybersecurity Market Review – Mike Privette – ESW #387

December 12, 2024

For our second year now, Mike Privette, from Return on Security and the Security, Funded newsletter joins us to discuss the year's highlights and what's to come in the next 12 months. In some ways, it has been a return to form for funding, though some casualties of a tough market likely had to seek acquisition when they might have otherwise raised...