Over a hundred Lenovo models get emergency security patches

A number of Lenovo’s products, from desktop PCs to laptops, have been fixed with major BIOS flaws that could enable threat actors to launch devastating cyberattacks. Security advisories published by the company earlier this week mention dozens of its products, including Desktop, All-in-Ones, IdeaCentres, Legions, ThinkCentres, ThinkPads, ThinkAgile, ThinkStation, and ThinkSystems, which are vulnerable to multiple security flaws.

By exploiting these flaws, threat actors could gain access to sensitive data, escalate privileges, launch denial of service attacks, and execute arbitrary code. By exploiting these flaws, threat actors could gain access to sensitive data, escalate privileges, launch denial of service attacks, and execute arbitrary code.

Lenovo fixed the following vulnerabilities: CVE-2021-28216, CVE-2022-40134, CVE-2022-40135 (information leak vulnerabilities in the Smart USB Protection SMI Handler, that allow access to SMM memory), CVE-2022-40136 (information leak in SMI Handler used to configure platform settings over WMI, allowing SMM memory reading), CVE-2022-40137 (buffer overflow in the WMI SMI Handler, allowing the execution of arbitrary code), American Megatrends security enhancements (no CVEs).

System administrators are urged to apply this BIOS update immediately in order to fix the flaws. A short list of models will receive updates early next year, with more patches expected before the end of the month and in October. Lenovo’s “Drivers & Software” portal is a good place to check for drivers and software for endpoints, and then select “Manual Update” if they need to be fixed. They can then manually install the latest BIOS firmware version after downloading it.

The best VPN for gaming

VPNs are great for a variety of reasons. You can use them at cafes, airports, libraries, and other public places to secure your internet traffic. Netflix catalogs can also be accessed using VPNs in countries that don’t have it yet, and Disney Plus can be accessed in countries where it isn’t available. One of the most popular uses of VPNs is gaming: Besides providing privacy to gamers using peer-to-peer networks, VPNs can also provide a more stable experience, as VPN servers are monitored and maintained for reliability; they can also help you get around ISPs that throttle traffic to game servers.

What to look for in a VPN for gaming?

Several essentials are needed for gaming. Speed is the first factor. Regardless of whether you’re gaming or not, poor internet speeds will ruin your online experience. In addition to excellent VPN speeds, you need stability as well, a connection that doesn’t drop or slow down. The service must not only be reliable but have a large number of servers as well. When servers become overloaded with users, VPNs can slow down. When your network is larger, you won’t need to worry about that issue as much since it will automatically connect users to other servers that aren’t overloaded. If you have speed, stability, and a large server network, then you’ll be fine. You also need unlimited bandwidth, which means a paid service is required. Games cannot be played with free VPNs due to their daily or monthly allowances.

1. ExpressVPN – Best VPN for gaming


・Consistently good speeds

・Easy-to-use desktop program

・Broad device support


・Logs data transfer amounts

・More expensive than many competitors

MSRP: $6.67 per month Best Prices Today.

2. NordVPN


・Excellent speeds

・Enough features to appeal to power users and novices

・No-logs policy

・Diskless servers



MSRP: $4.92 per month Best Prices Today.

3. Private Internet Access


・Good number of extra features such as multi-hop and split tunneling

・Diskless servers

・Allows for up to 10 simultaneous connections


・App panel locked to the lower-right corner of the screen

・New ownership may give some users pause

MSRP: $9.95 per month Best Prices Today

4. ProtonVPN


・Fantastic speeds

・Easy-to-use multi-hop feature

・Supports TOR over VPN connections



MSRP: $96 Best Prices Today.