Intel Alder Lake BIOS code leak may contain vital secrets

Source code for the BIOS used with Intel’s 12th-gen Core processors has been leaked online, possibly including details of undocumented model-specific registers (MSRs) and even the private signing key for Intel’s Boot Guard security technology.

The source code was apparently shared via 4chan and GitHub, in a file containing tools and code for generating and optimizing BIOS/UEFI firmware images, plus related documentation. Word quickly spread to Twitter at the weekend, Alder Lake being the code-name for the x86 giant’s 12th-gen desktop processors.

The source code may reveal exploitable vulnerabilities in the firmware that miscreants could abuse in future on people’s PCs. Here’s a note from the usually reliable infosec watchers VX Underground:

Read more…
Source: The Register