I have a question for the Hak5 team regarding the RCS Agent. What steps can I take to secure any recently acquired computer from this particular threat? Even if I purchase the machine brand new from the manufacturer, there will always be that tiny scintilla of doubt as to whether or not it could be infected. A used or refurbished machine would be downright untrustworthy.
As a standard practice I always boot n' nuke any new computer to DoD standards. Once thoroughly wiped to ensure nothing unpleasant is hiding anywhere on the drive, I install my OS from scratch. If I understand what you are saying correctly, this wouldn't be enough to protect my data? Setting a BIOS password is great but would only make sense in cases where I was 100% sure the BIOS is uncompromised. How would I even make such a determination? What to do???