I read the article. IF the app install drivers without internet, it means that there is a section of the board that have the first drivers and the app itself and self contain. I do not see the a issue here, unless is load it by default in factory. that will be the source of the exploit. Yes is a concern. I use secure boot. and also the only way to corrupt these is hacking asus website. that will be the same as windows update platform, since drivers and updates for te app are from MS store, and get download on internet access FROM the MS store.
I have to read these more. I see these app a bless and all drivers will be updated. There are more chance to get these exploit from installing programs from mega or any other download services or torrents that secure boot has being working from me since i use a lot of torrent uses for sending and getting files that need a lot of space.
Yes is a concern, and Asus should work twice as much safe keeping these CRATE app. that is a app send to the windows rutine that connect to asus websites and MS drivers. Remember ASUS DOES NOT update drivers frequently. there is a huge effort from the community making z170/z270/z370 and now z390 and it equivelant on the strix, in here, making sure that drivers are update. that a us a huge effort. these app can be a double dagar but well taking cared is a huge advantage for us. Just these las weeks i have got drivers that are 2 year behind asus website. my computer, aside of some bugs, are update. and am not defending anyone.
If these works, other platforms will join like x99 x299 and x370, since x470 have these app, on the rudimentary way in the x490. For the moment z390 is the second wave to make these happen and i like it. But asus should make these advantage safe.
Learn, Play Enjoy!