• u/lukmly013 💾 (lemmy.sdf.org)
      link
      fedilink
      English
      27
      edit-2
      2 days ago

      The ASUS UEFI firmware exposes an ACPI table to Windows 10, called “WPBT” or “Windows Platform Binary Table”. WPBT is used in the pre-built OEM industry, and is referred to as “the Vendor’s Rootkit.” Put simply, it is a script that makes Windows copy data from the BIOS to the System32 folder on the machine and execute it during Windows startup - every single time the system is booted.

      So, sounds like a Windows-specific vulnerability feature.

      • @Grabthar@lemmy.world
        link
        fedilink
        English
        22 days ago

        Make a read only file/folder with the same name and the script should fail. But that is horseshit.