• breakingcups@lemmy.world
      link
      fedilink
      arrow-up
      0
      ·
      3 months ago

      This does not require a supply chain attack, just a user ignorantly clicking yes on a UAC prompt. After which the machine is forever compromised, even after replacing ssds / hdds.

        • Breadhax0r@lemmy.world
          link
          fedilink
          arrow-up
          0
          ·
          3 months ago

          From my understanding it allows malicious code to be installed in protected memory on the CPU itself, so you can’t get rid of it once it’s there without a lot of extra work