Two things
I'd have thought that a hack of this sophistication would have protected itself against being overwritten: the BIOS update routine must be written in the BIOS code itself, I suppose. Second thing is how careful one is going to have to be to get a certified gold-plated known good benign BIOS to re-flash.