Will dm-verity protect against firmware malware on storage devices likes HDD or SSD?

Malware on the firmware level can potentially mess with data on the storage device. There is no point in doing that for encrypted data except maybe corruption. But what about a smartphone or other device with dm-verity where the system partition is not encrypted. Could this kind of malware break dm-verity?

General: firmware reversal

I’m not any sort of expert in this, i’m only interested

I saw a video about firmware extractin through JTAG, and it ended up with the plane filesystem, all right!

but then what? why all of this? what can I do with the filesystem? I’m looking for something to get interested in, but it only get to the point of having the filesystem

My sincere thanks for your answers and time

What are the possible firmware infections on a laptop? [closed]

I know for sure I have some malware around. I have formatted many times and I installed various operating systems like Linux and OpenBSD. So now I suspect some firmware infection.

In addition to a BIOS/UEFI infection, what other firmware infections are possible on a laptop?

I don’t have a DVD burner/reader and not even an ethernet NIC.

How to verify router firmware is legit

I’m recently getting into information security i am starting to focus on securing my network and i read that your supposed to apply firmware patches for your routers firmware. My question is how do i verify that the firmware update is indeed a unmodified version of the firmware? I know about signature checking but how would i do this in regards to my router? Also if you have any other security advice besides changing the default login for the router please add that as well thanks in advance.

Check ME Firmware Version

I just installed and executed the latest BIOS driver to my HP Elitebook 830 G5 PC. After all the installation process ended, how do I check the new BIOS version and also the new ME Firmware Version without going to boot menu>BIOS>System information>advanced system information ?

Is there any way I can check the info through command prompt ? I tried systeminfo, it only shows BIOS version but no ME Firmware version.

Thank you.

After failed update to 19.04 from 18.04 (and fixing) I recieve “Firmware is not ready to run!” when trying to start computer

Title explains my question. The image below contains all the errors. I messed around and eventually got apt upgrade and update to go in recovery mode so all my packages should be good now. Errors

I’ve done some reading and some people say it may be from my Nvidia GPU? If it helps I have a PNY 1060 6gb.

If I delete all partitions during Ubuntu installation and create efi partition, will I need to update firmware?

I am installing Ubuntu 19.04 on laptop(it has SSD drive) that comes with Free DOS predinstalled. I set BIOS to boot as uefi and I will delete all current partitions and create efi (with boot flag), root and home. Will everything be OK or, I will need to update firmware. Thank you in advance.

What is the best strategy for handling a compromised private key within the domain of firmware?

I have a firmware project that uses asymmetric cryptography for assuring integrity and authority of updates. The private key is stored within the company, and the public key is on the firmware to validate the integrity and authenticity of an update attempt.

Currently, the public key to be used for verifying the signature is ‘written’ (in NV data) only on factory updates, so the customer can’t just overwrite the FW by adding it’s own key.

I want to implement a strategy for handling the case of the private key being compromised. Are there any standards or similar documents to refer to?

Some context: The unit with the firmware will not have internet access. A compromised private key would need to have its associated public key replaced manually on-site.