Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models
What’s new: Researchers have identified multiple vulnerabilities in Dell’s ControlVault3 firmware, collectively referred to as the ReVault attack. These flaws could allow attackers to bypass Windows login, extract cryptographic keys, and maintain access even after an OS reinstall by embedding undetectable malware in the firmware. The vulnerabilities affect over 100 Dell laptop models using Broadcom BCM5820X series chips. No evidence of exploitation in the wild has been reported.
Who’s affected
More than 100 models of Dell laptops that utilize Broadcom BCM5820X series chips are impacted by these vulnerabilities.
What to do
- Apply the security fixes provided by Dell.
- Disable ControlVault services if not using peripherals like fingerprint readers, smart card readers, or NFC readers.
- Turn off fingerprint login in high-risk situations.
