• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

GIGABYTE Fortifies System Security with Latest BIOS Updates and Enhanced Verification

GFreeman

News Editor
Staff member
Joined
Mar 6, 2023
Messages
1,583 (2.41/day)
GIGABYTE Technology, one of the leading global manufacturers of motherboards, graphics cards, and hardware solutions, has always prioritized cybersecurity and information security. GIGABYTE remains committed to fostering close collaboration with relevant units and implementing robust security measures to safeguard its users. GIGABYTE engineers have already mitigated potential risks and uploaded the Intel 700/600 and AMD 500/400 series Beta BIOS to the official website after conducting thorough testing and validation of the new BIOS on GIGABYTE motherboards.

To fortify system security, GIGABYTE has implemented stricter security checks during the operating system boot process. These measures are designed to detect and prevent any possible malicious activities, providing users with enhanced protection:
  • 1. Signature Verification: GIGABYTE has bolstered the validation process for files downloaded from remote servers. This enhanced verification ensures the integrity and legitimacy of the contents, thwarting any attempts by attackers to insert malicious code.
  • 2. Privilege Access Limitations: GIGABYTE has enabled standard cryptographic verification of remote server certificates. This guarantees that files are exclusively downloaded from servers with valid and trusted certificates, ensuring an added layer of protection.

BIOS updates for the Intel 500/400 and AMD 600 series chipset motherboards will also be released on the GIGABYTE official website later today, along with updates for previously released motherboards. GIGABYTE recommends that users regularly visit the official GIGABYTE website for future BIOS updates.



View at TechPowerUp Main Site | Source
 
Joined
Feb 11, 2009
Messages
5,572 (0.96/day)
System Name Cyberline
Processor Intel Core i7 2600k -> 12600k
Motherboard Asus P8P67 LE Rev 3.0 -> Gigabyte Z690 Auros Elite DDR4
Cooling Tuniq Tower 120 -> Custom Watercoolingloop
Memory Corsair (4x2) 8gb 1600mhz -> Crucial (8x2) 16gb 3600mhz
Video Card(s) AMD RX480 -> RX7800XT
Storage Samsung 750 Evo 250gb SSD + WD 1tb x 2 + WD 2tb -> 2tb MVMe SSD
Display(s) Philips 32inch LPF5605H (television) -> Dell S3220DGF
Case antec 600 -> Thermaltake Tenor HTCP case
Audio Device(s) Focusrite 2i4 (USB)
Power Supply Seasonic 620watt 80+ Platinum
Mouse Elecom EX-G
Keyboard Rapoo V700
Software Windows 10 Pro 64bit
GIGABYTE Technology, has always prioritized cybersecurity and information security.

What they dont prioritize is the physical safety of your PC, that can blow up / burn down for all they care, but hey, at least your data wont fall in the wrong hands...or in anyone's hands for that matter, right?
 
Joined
Nov 6, 2014
Messages
117 (0.03/day)
Processor Intel i7 13700K
Motherboard ASUS PROArt Z690 Creator WiFi
Cooling Liquid Freezer II - 280
Memory Kingston 32GB DDR5 @ 6200 MT/s
Video Card(s) Palit RTX3070 GamingPRO
Storage TrueNAS CORE
Case Phanteks ECLIPSE P600S
Audio Device(s) Creative Sound Blaster AE-5
Power Supply SEASONIC CONNECT 750W
just remove the bloody thing from the BIOS
also ASUS, MSI and whomever else has it
 
Joined
Apr 5, 2016
Messages
218 (0.07/day)
Location
New Zealand
System Name Katzi
Processor Ryzen 7 5800X3D
Motherboard Gigabyte Aorus X570S Pro AX 1.1
Cooling Phanteks Glacier 360
Memory G.Skill Trident Z Neo F4-3600C16-16GTZNC (Dual Rank 32Gb)
Video Card(s) MSI Gaming X Trio RTX 3080
Storage Samsung SSD 980 1TB, 970 512GB Evo Plus, 1TB 870 QVO, 960 Pro
Display(s) AOC CQ27G2
Case NZXT H6 Black
Audio Device(s) Creative Soundblaster X3
Power Supply Corsair RMx850
Mouse Logitech G502X Plus & Razer Basilisk V3 Pro
Keyboard Keychron V2 translucent, Gateron Ink Black Silent, lubed & filmed.
just remove the bloody thing from the BIOS
also ASUS, MSI and whomever else has it

Asus does this, MSI hasn't to my knowledge (My last MSI board was a B550 Unify)
 

Leiesoldat

lazy gamer & woodworker
Supporter
Joined
Jun 29, 2021
Messages
125 (0.10/day)
System Name Arda
Processor AMD Ryzen 5800X3D
Motherboard Gigabyte X570-I AORUS Pro WiFi
Cooling Custom Loop - Aquacomputer, Optimus, EK, Bykski
Memory GSkill Trident Z RGB 32 GB (2x16) DDR4-3200
Video Card(s) Gigabyte Gaming OC RX 6800XT
Storage SK Hynix P41 1TB
Display(s) VIOTEK 3440 x 1440 144 Hz Curved
Case XTIA Proto-XL
Audio Device(s) Schiit Modius + Schiit Jotunheim
Power Supply Seasonic Prime 850W Titanium
Mouse Xtrfy MZ1 Zy's Rail Wireless
Keyboard Rainkeebs Yasui - Custom 40% Ortholinear
Software Windows 11 Pro
Joined
Dec 26, 2006
Messages
3,862 (0.59/day)
Location
Northern Ontario Canada
Processor Ryzen 5700x
Motherboard Gigabyte X570S Aero G R1.1 BiosF5g
Cooling Noctua NH-C12P SE14 w/ NF-A15 HS-PWM Fan 1500rpm
Memory Micron DDR4-3200 2x32GB D.S. D.R. (CT2K32G4DFD832A)
Video Card(s) AMD RX 6800 - Asus Tuf
Storage Kingston KC3000 1TB & 2TB & 4TB Corsair MP600 Pro LPX
Display(s) LG 27UL550-W (27" 4k)
Case Be Quiet Pure Base 600 (no window)
Audio Device(s) Realtek ALC1220-VB
Power Supply SuperFlower Leadex V Gold Pro 850W ATX Ver2.52
Mouse Mionix Naos Pro
Keyboard Corsair Strafe with browns
Software W10 22H2 Pro x64
Joined
Jan 5, 2006
Messages
18,584 (2.68/day)
System Name AlderLake
Processor Intel i7 12700K P-Cores @ 5Ghz
Motherboard Gigabyte Z690 Aorus Master
Cooling Noctua NH-U12A 2 fans + Thermal Grizzly Kryonaut Extreme + 5 case fans
Memory 32GB DDR5 Corsair Dominator Platinum RGB 6000MT/s CL36
Video Card(s) MSI RTX 2070 Super Gaming X Trio
Storage Samsung 980 Pro 1TB + 970 Evo 500GB + 850 Pro 512GB + 860 Evo 1TB x2
Display(s) 23.8" Dell S2417DG 165Hz G-Sync 1440p
Case Be quiet! Silent Base 600 - Window
Audio Device(s) Panasonic SA-PMX94 / Realtek onboard + B&O speaker system / Harman Kardon Go + Play / Logitech G533
Power Supply Seasonic Focus Plus Gold 750W
Mouse Logitech MX Anywhere 2 Laser wireless
Keyboard RAPOO E9270P Black 5GHz wireless
Software Windows 11
Benchmark Scores Cinebench R23 (Single Core) 1936 @ stock Cinebench R23 (Multi Core) 23006 @ stock
To fortify system security, GIGABYTE has implemented stricter security checks during the operating system boot process. These measures are designed to detect and prevent any possible malicious activities, providing users with enhanced protection:
  • 1. Signature Verification: GIGABYTE has bolstered the validation process for files downloaded from remote servers. This enhanced verification ensures the integrity and legitimacy of the contents, thwarting any attempts by attackers to insert malicious code.
  • 2. Privilege Access Limitations: GIGABYTE has enabled standard cryptographic verification of remote server certificates. This guarantees that files are exclusively downloaded from servers with valid and trusted certificates, ensuring an added layer of protection.

Now if they only thought about actually doing that 10 years ago....
 
Joined
Aug 21, 2013
Messages
1,937 (0.47/day)
Ironic that my X570 board does not have this "feature" present in older B450 and newer AM5/Z790 boards.
X570S refresh is affected tho.
 
Joined
Oct 8, 2022
Messages
43 (0.05/day)
Location
Michigan
System Name Edna
Processor AMD Ryzen 7 7800X3D
Motherboard Gigabyte Aorus B650E Elite X AX ICE
Cooling Thermalright Peerless Assassin 120 ARGB
Memory 32GB (2x16) Corsair 6000 Mhz DDR5
Video Card(s) Sapphire Pure RX 7900GRE
Storage 500GB WD SN570 SE, 2TB Crucial P3, 3TB Seagate USB + Hub
Display(s) LG Ultragear 32GN600-B
Case NZXT H6 Flow
Audio Device(s) SoundBlaster ZxR
Power Supply Be Quiet Pure Power 12 M 1000 Watt
Mouse Elecom Trackball
Keyboard MageGee MK Star
Software Windows 11 24H2 Beta, OpenSUZE Tumbleweed
Benchmark Scores Cinebench r23 = 18080
What's weird is this news broke just days after a few users in the MSI Gaming subreddit reported that a new option in their BIOS automatically downloads and executes a full screen version of MSI Center after logging into Windows and it starts executing BIOS updates and driver updates with no clear way to stop or close the app. This behavior is basically a rootkit designed to brick boards so they can sell replacements. Wash. Rinse. Repeat. It boggles the mind that a sysadmin would let this insanity escape the asylum.
 
Joined
Apr 6, 2021
Messages
1,131 (0.83/day)
Location
Bavaria ⌬ Germany
System Name ✨ Lenovo M700 [Tiny]
Cooling ⚠️ 78,08% N² ⌬ 20,95% O² ⌬ 0,93% Ar ⌬ 0,04% CO²
Audio Device(s) ◐◑ AKG K702 ⌬ FiiO E10K Olympus 2
Mouse ✌️ Corsair M65 RGB Elite [Black] ⌬ Endgame Gear MPC-890 Cordura
Keyboard ⌨ Turtle Beach Impact 500
BIOS backdoor fixed, for 271 models of Gigabyte motherboards! :eek: NSA staff not going to be very amused.


Tbh. automated BIOS updates are just a dumb idea. Not only for safety reasons, but also for system reliability. It's just better to wait a week before updating. A popup update notice would be way better.
 
Joined
Mar 6, 2017
Messages
3,358 (1.18/day)
Location
North East Ohio, USA
System Name My Ryzen 7 7700X Super Computer
Processor AMD Ryzen 7 7700X
Motherboard Gigabyte B650 Aorus Elite AX
Cooling DeepCool AK620 with Arctic Silver 5
Memory 2x16GB G.Skill Trident Z5 NEO DDR5 EXPO (CL30)
Video Card(s) XFX AMD Radeon RX 7900 GRE
Storage Samsung 980 EVO 1 TB NVMe SSD (System Drive), Samsung 970 EVO 500 GB NVMe SSD (Game Drive)
Display(s) Acer Nitro XV272U (DisplayPort) and Acer Nitro XV270U (DisplayPort)
Case Lian Li LANCOOL II MESH C
Audio Device(s) On-Board Sound / Sony WH-XB910N Bluetooth Headphones
Power Supply MSI A850GF
Mouse Logitech M705
Keyboard Steelseries
Software Windows 11 Pro 64-bit
Benchmark Scores https://valid.x86.fr/liwjs3
The bad part is, according to the SMU checker, all new BIOS versions have AMD AGESA 1.0.0.7A as part of it. According to a lot of users, 1.0.0.7A is not even close to being stable yet. So much so that I think the letter "A" in the version stands for Alpha, as in that it's an Alpha version and not even Beta.

I don't have any of the Gigabyte software installed on my system and it's going to stay that way.
 
Joined
Oct 8, 2022
Messages
43 (0.05/day)
Location
Michigan
System Name Edna
Processor AMD Ryzen 7 7800X3D
Motherboard Gigabyte Aorus B650E Elite X AX ICE
Cooling Thermalright Peerless Assassin 120 ARGB
Memory 32GB (2x16) Corsair 6000 Mhz DDR5
Video Card(s) Sapphire Pure RX 7900GRE
Storage 500GB WD SN570 SE, 2TB Crucial P3, 3TB Seagate USB + Hub
Display(s) LG Ultragear 32GN600-B
Case NZXT H6 Flow
Audio Device(s) SoundBlaster ZxR
Power Supply Be Quiet Pure Power 12 M 1000 Watt
Mouse Elecom Trackball
Keyboard MageGee MK Star
Software Windows 11 24H2 Beta, OpenSUZE Tumbleweed
Benchmark Scores Cinebench r23 = 18080
There's been reports that AGESA 120A for some MSI AM4 boards are corrupting the full screen logo at boot to the point that it's either garbled or missing completely.
 
Joined
Feb 1, 2019
Messages
3,667 (1.70/day)
Location
UK, Midlands
System Name Main PC
Processor 13700k
Motherboard Asrock Z690 Steel Legend D4 - Bios 13.02
Cooling Noctua NH-D15S
Memory 32 Gig 3200CL14
Video Card(s) 4080 RTX SUPER FE 16G
Storage 1TB 980 PRO, 2TB SN850X, 2TB DC P4600, 1TB 860 EVO, 2x 3TB WD Red, 2x 4TB WD Red
Display(s) LG 27GL850
Case Fractal Define R4
Audio Device(s) Soundblaster AE-9
Power Supply Antec HCG 750 Gold
Software Windows 10 21H2 LTSC
Not sure why they obsessed with keeping this rubbish in the bios, the people who want the software will seek it out and download it, the ones who dont, dont force it on them.

They could gain PR by admitting they got it wrong and saying they taking a security stance now of removing the functionality.
 
Joined
Aug 20, 2007
Messages
21,542 (3.40/day)
System Name Pioneer
Processor Ryzen R9 9950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
Still wont be buying GB boards unless they fix these as well:
That's literally what this fixes. And to all you paranoids out there, this was a potential vulnerability that hadn't even been exploited yet, and would be pretty difficult to exploit for that matter (it's a case of "do you trust your dns server?"). Not a "backdoor."
 
Joined
Jan 12, 2023
Messages
221 (0.31/day)
System Name IZALITH (or just "Lith")
Processor AMD Ryzen 7 7800X3D (4.2Ghz base, 5.0Ghz boost, -30 PBO offset)
Motherboard Gigabyte X670E Aorus Master Rev 1.0
Cooling Deepcool Gammaxx AG400 Single Tower
Memory Corsair Vengeance 64GB (2x32GB) 6000MHz CL40 DDR5 XMP (XMP enabled)
Video Card(s) PowerColor Radeon RX 7900 XTX Red Devil OC 24GB (2.39Ghz base, 2.56Ghz boost)
Storage 2x1TB SSD, 2x2TB SSD, 2x 8TB HDD
Display(s) Samsung Odyssey G51C 27" QHD (1440p 165Hz) + Samsung Odyssey G3 24" FHD (1080p 165Hz)
Case Corsair 7000D Airflow Full Tower
Audio Device(s) Corsair HS55 Surround Wired Headset/LG Z407 Speaker Set
Power Supply Corsair HX1000 Platinum Modular (1000W)
Mouse Logitech G502 X LIGHTSPEED Wireless Gaming Mouse
Keyboard Keychron K4 Wireless Mechanical Keyboard
Software Arch Linux
Well, I have turned the feature off and the beta BIOS with the fix is out for my board. I'll be waiting for the non-beta BIOS but I guess I have to give Gigabyte credit for fixing it so quickly? Ideally they wouldn't have included the feature in the first place but I'll take whatever win I can get.
 
Joined
Jun 8, 2022
Messages
388 (0.42/day)
Location
Ohio, USA
System Name Trackstar
Processor AMD Ryzen 7 5800X3D -30 All Core CO (on Corsair XC5 block)
Motherboard Gigabyte B550 AORUS Elite V2 Rev 1.0 (F17 BIOS)
Cooling Corsair XD5 pump / Corsair XR5 1x 360mm (front) + 1x 420mm (top) rads
Memory 32GB G.Skill DDR4-3600 CL14 1:1 (F4-3600C14Q-32GVKA kit)
Video Card(s) ASRock RX 6950XT OC Formula (on Bykski A-AR6900XTOCF-X block)
Storage WD_BLACK SN850X 2TB w/HS (FW ver. 620361WD)
Display(s) Dell S3222DGM 32" 1440p/165Hz FreeSync
Case Fractal Design Meshify S2
Audio Device(s) Realtek ALC1200 Integrated Audio
Power Supply Super Flower Leadex Platinum SE 1200W on Liebert GXT4-1500RT120 UPS
Mouse Corsair Nightsword RGB
Keyboard Corsair K60 RGB PRO
VR HMD N/A
Software Windows 11 Pro 23H2 (Build 22631.3958)
Benchmark Scores https://www.3dmark.com/sw/1131940 https://www.3dmark.com/fs/29315810
Wow, my B550 AORUS Elite V2 narrowly escaped this crap solely on the virtue of it being the 1.0 revision. Looks like rev 1.2 and up are all affected as they include the stupid feature.

GIGABYTE Technology, has always prioritized cybersecurity and information security.

What they dont prioritize is the physical safety of your PC, that can blow up / burn down for all they care, but hey, at least your data wont fall in the wrong hands...or in anyone's hands for that matter, right?

Can't leak the keys if your TPM chip is melted
1685719662130.png
 
Last edited:
Joined
Jul 10, 2017
Messages
2,671 (0.98/day)
Mid of 2023 and some vendors start imlementing basic blob validation...
 
Joined
Mar 1, 2021
Messages
496 (0.36/day)
Location
Germany
System Name Homebase
Processor Ryzen 5 5600
Motherboard Gigabyte Aorus X570S UD
Cooling Scythe Mugen 5 RGB
Memory 2*16 Kingston Fury DDR4-3600 double ranked
Video Card(s) AMD Radeon RX 6800 16 GB
Storage 1*512 WD Red SN700, 1*2TB Curcial P5, 1*2TB Sandisk Plus (TLC), 1*14TB Toshiba MG
Display(s) Philips E-line 275E1S
Case Fractal Design Torrent Compact
Power Supply Corsair RM850 2019
Mouse Sharkoon Sharkforce Pro
Keyboard Fujitsu KB955
I also would love to get a AGESA 1.2.0.A for my X570S and B550 Aorus Pro somehow someday dear Gigabyte ;)
 
Top