This is a surprisingly comprehensive summary of laptop hardware attack surfaces — especially appreciated the mention of DMA attacks and firmware-level threats.
I feel like most users (even technical ones) still underestimate how vulnerable pre-boot environments and supply chain firmware tampering can be.
Has anyone here actually experimented with disabling UEFI features like Intel ME or AMD PSP for security? Curious what the trade-offs were in practice.
I feel like most users (even technical ones) still underestimate how vulnerable pre-boot environments and supply chain firmware tampering can be.
Has anyone here actually experimented with disabling UEFI features like Intel ME or AMD PSP for security? Curious what the trade-offs were in practice.