https://archive.is/Yp6PI article without paywall

Well damn. Guess I’m getting a new motherboard soon. It’s crazy that this made it out the door without at least enforcing https. Then again, gigabyte hasn’t been known for thinking things all the way through recently.

We need Coreboot support on more boards. Motherboard vendors can’t be trusted to handle firmware.

Thanks for the heads-up, OP. I was planning on building a new PC in a few months and I probably would have chosen Gigabyte as my mobo. I would have been so upset if I saw this after the fact.

What brand should I be looking at instead? ASUS?

daaaamn this is some shit

with the hundred if not gigabytes of craps to install on windows, it’s a miracle there’s no more. moreover, gamers being what they are, should not be the only issue between the cracks, obscure patches, obscure tweaked DLL to win 5fps or mods to tune their The Witch’s hero with a anime pin-up outfit…

This is wild. I’m on an Asrock board, so luckily not too affected. At the same time, with AMD’s PSP and Intel’s ME, nearly all boards are ‘backdoored’ to some extent anyway.

Hi tech geeks! First post on Lemmy.

I believe this would be exploited in a sense like a “man in the middle”… so it isn’t as “alarming” as a true backdoor. Just disable the “app center download” in the bios. Mine was enabled upon first install of my new X570S board, but I was knowing what this type of setting this was prior to this issue being published … I already had a feeling this should be disabled.