The BIOS/UEFI is the first code that runs when a computer powers on. It initializes the hardware, performs the Power-On Self-Test (POST), and locates and launches the operating system bootloader. Why Attackers Target the BIOS
Modern systems employ automated defenses to detect and repair firmware corruption. Attacking and Defending BIOS
If an attacker has physical access to the machine, they can bypass digital security controls. The BIOS/UEFI is the first code that runs
Exploiting update mechanisms that lack cryptographic signature verification to flash modified, malicious BIOS images. performs the Power-On Self-Test (POST)
System Management Mode (SMM) is a highly privileged CPU mode. Vulnerabilities in SMM handlers allow attackers to execute arbitrary code with ring -2 privileges.
Attackers do not always need physical access. They can leverage vulnerabilities from within a compromised operating system.