Firmware vulnerabilities, this time Lenovo
Lenovo released patches for vulnerabilities in its firmware that potentially allow attackers to install malware "underneath" the operating system. This means ensuring the persistence (automatic launch) of malware beyond the detection capabilities of antimalware or EDR tools at the operating system level.
The vulnerabilities affect the UEFI firmware running a number of Lenovo laptop models, including the Yoga, ThinkBook, and IdeaPad - labeled as CVE-2022-1890, CVE-2022-1891, and CVE-2022-1892.
The problem with these and similar vulnerabilities is that firmware is usually not covered by automatic patching policies like other elements of operating systems, and its upgrades usually require manual intervention on the employee's computer or laptop.
Read more about latest Lenovo firmware vulerabilities.