• breakingcups@lemmy.world
    link
    fedilink
    arrow-up
    3
    ·
    3 months ago

    This does not require a supply chain attack, just a user ignorantly clicking yes on a UAC prompt. After which the machine is forever compromised, even after replacing ssds / hdds.

      • Breadhax0r@lemmy.world
        link
        fedilink
        arrow-up
        2
        ·
        3 months ago

        From my understanding it allows malicious code to be installed in protected memory on the CPU itself, so you can’t get rid of it once it’s there without a lot of extra work