And didnt the BIOS virus require admin interaction to activate the attack? An admin would have to OK a firmware update. So, its not like this would ripple through entire systems. An admin might approve the first update, see the hardware just got bricked and stop. Virus or not, if an update bricked my computer, I'm not going to try it again on the thousands of machines that I manage.

They made it seem like this exploit could have knocked out every computer in the nation. What was the real risk here?