A newly released exploit can disable the write protection of critical firmware areas in Lenovo ThinkPads and possibly other laptops from other vendors as well. Many new Windows security features, like Secure Boot, Credential Guard, depend on the low-level firmware being locked down. The exploit, dubbed ThinkPwn, was published earlier this week by a researcher named Dmytro Oleksiuk, who did not share it with Lenovo in advance. This makes it a zero-day exploit — an exploit for which there is no patch available at the time of its disclosure.”]