Intel says some of its key source code has been leaked online

Intel maintains the leak doesn’t expose any new security vulnerabilities

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Intelhas officially confirmed that the source code of the BIOS of its 12th generation Alder Lakeprocessorshas been leaked online, with copies available on sites like 4chan and Github.

A BIOS (basic input/output system) is the program used by a computer’s microprocessor to start the system as it boots, managing the communications between the computer’soperating systemand hardware such as ahard disk, keyboard, mouse, orprinter.

Though no vulnerabilities have been announced at the time of writing, this type of leak could potentially reveal bugs in Intel’s hardware that could be taken advantage of.

What was revealed?

The leak is reportedly comprised of a 6GB file containing tools and code for creating and optimizing BIOS/UEFI images.

However, the hardware giant said it does not “believe this exposes any new security vulnerabilities as [it does] not rely on obfuscation of information as a security measure” ina statementtoTom’s Hardware.

If you’ve found a vulnerability in the source code, though, you might be interested in reporting it to Intel’sProject Circuit Breakerbug bounty program. This program awards between $500 to $100,000 per bug, depending on how serious the issue is.

Intel CEO warns of more tough times ahead>Our guide to best disaster recovery tools>Google says Intel-powered VMs are the way forward, despite cost

Intel hasn’t provided any proof of where the leak came from, but says it came via a third party.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

The news comes at a time when semiconductor firms themselves are popular targets for the efforts of cybercriminals

Nvidiaappeared to have been hit witha potential cyber attackin February 2022, reportedly forcing the manufacturer to take some services offline for certain parts of the business.

Will McCurdy has been writing about technology for over five years. He has a wide range of specialities including cybersecurity, fintech, cryptocurrencies, blockchain, cloud computing, payments, artificial intelligence, retail technology, and venture capital investment. He has previously written for AltFi, FStech, Retail Systems, and National Technology News and is an experienced podcast and webinar host, as well as an avid long-form feature writer.

Cisco issues patch to fix serious flaw allowing possible industrial systems takeover

Washington state court systems taken offline following cyberattack

Google TV will require more RAM for future upgrades – which might leave older TVs and streaming boxes behind