@dangoodin firstly this comes as no surprise. Next tho, is that firmware updates from vendors can apparently contain unsigned images and still be legit. That seems weird, but supposedly this is an actual thing.

I’m still not clear how a malicious image gets into the right place on a normal system where it doesn’t have privileges. Any thoughts?