The culprit purportedly comes from a customer PE loader, which allows any UEFI binary to be loaded, even unsigned ones.

They don’t even have to be signed…

Here is an example of something similar that disables Windows Platform Binary Table…(I’m not advocating that anybody actually use this).

WPBT is another terrible ‘feature’ of UEFI/windows that lets motherboard manufacturers install their bloatware even on fresh installs of the OS. First boot of a fresh OS the app will already be installed. Uninstall it and reboot…installed again. You literally need to dig through their bios options to tell it to stop. They usually make that quite the process too. Bios update? You can almost guarantee they turned it back on and probably relocated it in the menus.

deleted by creator

Dev is a large financial drain and a ton of companies accounting departments(or whoever) don’t see the value. Ok the IT department is responsible for the website? The website is ‘done’ though so why are we still paying all these IT/Dev people? Cue massive IT layoffs…wall street/investors are super happy.

No new features/bug fixes/security updates. Customers are unhappy(who cares?, they’re still spending money!). Oh…massive data leak from some unpatched security vulnerability. All the sudden IT budget blows up…

The damage to reputation and future business deals are hindered. The amount of promising you’ve identified the problem and mitigated that from happening again etc. The requirements of other companies that you follow xyz audits to do business with them etc(which can be a good thing, it’s just very costly to a business).

Then a handful of years later they forget it all and repeat…

I work in IT/Dev…oof.

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator

deleted by creator