Doing a quick search I can't find any reports of firmware malware. Maybe could happen but looks as if it would be exceedingly rare.
When you set a firmware password, users who don't have the password can't start up from macOS Recovery or any disk other than the designated startup disk.
support.apple.com
“If your Mac has Apple silicon, or your Intel-based Mac has the T2 chip, then by default it has a security policy to ensure that your hardware and software haven’t been tampered with. With the default security policy, from the time you turn your Mac on, your Mac uses its hardware to verify each step of the boot process to ensure that the hardware and software haven’t been tampered with. ”
Excerpt From
macOS Support Essentials 12 - Apple Pro Training Series
Benjamin G. Levy
Computers & Internet · 2022
books.apple.com
This material may be protected by copyright.
Looks as if you can restore your firmware:
“Use Apple Configurator 2 to Revive or Restore Your Mac
Under extremely rare circumstances, such as power loss during a small window of time when you are updating firmware, your Mac may become unresponsive, and you might have to use Apple Configurator 2 to revive or restore your firmware.
This applies only to:
Mac computers with Apple silicon
Intel-based Mac computers with the T2 chip
The revive process updates the firmware, and the restore process updates the firmware and erases the internal flash storage. The details of this process are outside the scope of this guide. For more information, refer to the appropriate article in the Apple Configurator 2 User Guide for more information”
Excerpt From
macOS Support Essentials 12 - Apple Pro Training Series
Benjamin G. Levy
Computers & Internet · 2022
books.apple.com
This material may be protected by copyright.
“support.apple.com/guide/apple-configurator-2/apdd5f3c75ad”
Excerpt From
macOS Support Essentials 12 - Apple Pro Training Series
Benjamin G. Levy
Computers & Internet · 2022
books.apple.com
This material may be protected by copyright.
“support.apple.com/guide/apple-configurator-2/apdd5f3c75ad”