Intel said it is investigating the private key leak in response to the recently exposed MSI product leak and taking appropriate measures to provide protection for users and prevent the installation of malicious UEFI firmware on the device.
The Money Message ransom gang launched an attack on MSI in March this year, stealing 1.5 terabytes of data including firmware, source code and databases.
Money Message asked MSI to pay a ransom of $4 million and after MSI refused, made the data public last week.
Researchers dug deeper into the data and found that it included the MSI OEM signature key for Intel Boot Guard.
Intel responded to this: “Intel BootGuard OEM keys are generated by the system manufacturer and these are not Intel signature keys.”
Intel, in order to prevent users from installing malicious firmware, Boot Guard will use the embedded public key built into Intel hardware to verify that the firmware is verified by a legitimate private signing key.
