Coreboot 25.03 Released with Support for 22 More Motherboards(phoronix.com) For those looking to replace their proprietary BIOS with the open-source Coreboot on a supported platform or are already doing so, Coreboot 25.03 is out today to provide the newest capabilities for this open-source BIOS/firmware solution.
Rust on the Ferris Sweep(gabevenberg.com) The other day, I stumbled upon RMK, a keyboard firmware written in Rust. Given that my Ferris Sweep has a Ferris the crab logo on the silkscreen, it felt only fitting that I flash it with RMK.
43 points by todsacerdoti 26 days ago | 6 comments
QRP Labs QMX SSB beta firmware relased(qrp-labs.com) This is the beta release page for the SSB firmware for QMX/QMX+ transceivers. This is a very complex project. The beta release here is provided without warranty, for brave beta testers who wish to try out the firmware and report back on any issues found or suggested enhancements. The firmware runs on both QMX and QMX+; for convenience from now on, this page will state "QMX" but that means equivalently QMX or QMX+ unless otherwise stated.
72 points by DrAwdeOccarim 39 days ago | 23 comments
Breaking AES encrypted firmware using neural networks(fromnothing.blog) Firmware encryption is becoming a common feature in modern devices. From a security standpoint, that’s welcome news. However, for anyone reverse engineering or testing device security, dumping firmware is often one of the first tasks — and encryption makes that task extremely challenging, if not impossible. So, why are we seeing more encryption? There are several reasons.
13 points by achristmascarl 84 days ago | 1 comments
Patient Monitor Contec CMS8000 Contains a Backdoor(cisa.gov) This fact sheet details an analysis of three firmware package versions of the Contec CMS8000, a patient monitor used by the U.S. Healthcare and Public Health (HPH) sector. Analysts discovered that an embedded backdoor function with a hard-coded IP address, CWE – 912: Hidden Functionality (CVE-2025-0626), and functionality that enables patient data spillage, CWE – 359: Exposure of Private Personal Information to an Unauthorized Actor (CVE-2025-0683), exists in all versions analyzed.
Microsoft patches Windows to eliminate Secure Boot bypass threat(arstechnica.com) For the past seven months—and likely longer—an industry-wide standard that protects Windows devices from firmware infections could be bypassed using a simple technique. On Tuesday, Microsoft finally patched the vulnerability. The status of Linux systems is still unclear.
Autocorrect in Your Keyboard Firmware (2021)(getreuer.info) Autocorrect is now a core QMK feature! It was released on 2022-11-26. Update your QMK set up and see QMK Autocorrect. Or if you want, you may continue to use the userspace implementation described in this page.
Intel ME Cleaner(github.com/corna) me_cleaner is a Python script able to modify an Intel ME firmware image with the final purpose of reducing its ability to interact with the system.
A brief history of Mac firmware(eclecticlight.co) Firmware, software that’s intimately involved with hardware at a low level, has changed radically with each of the different processor architectures used in Macs.
5 points by todsacerdoti 222 days ago | 0 comments
AMD Plans for Open-Source Firmware OpenSIL replacing AGESA blobs for Zen 6(phoronix.com) Last year to much excitement in our community was the new AMD project announcement of openSIL as an open-source CPU silicon initialization project that is an advancement for open-source firmware and to eventually replace AMD's AGESA across both client and server processors.