BlackLotus UEFI bootkit: Myth confirmed

Discussion in 'malware problems & news' started by FanJ, Mar 6, 2023.

  1. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    4,665
    BlackLotus UEFI bootkit: Myth confirmed
    The first in-the-wild UEFI bootkit bypassing UEFI Secure Boot on fully updated UEFI systems is now a reality

    Martin Smolár - 1 Mar 2023

    https://www.welivesecurity.com/2023/03/01/blacklotus-uefi-bootkit-myth-confirmed/

    Long article with analysis.
    Read there more !!

    Also article here:
    https://arstechnica.com/information...ure-boot-enabled-by-unpatchable-windows-flaw/
     
    Last edited: Mar 6, 2023
    FanJ, Mar 6, 2023
    #1
  2. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    17,579
    Location:
    The Netherlands
    Yes, this is a bit troubling, and I wonder if behavior blockers could block it from being able to install successfully. Because after install it would probably become way too hard to block it from performing suspicious stuff. Windows should really get some type of security layer that works like a hypervisor in order to detect this. I also posted about it, over here:

    https://www.wilderssecurity.com/thr...ndows-devices-since-2012.440991/#post-3135613
     
    Rasheed187, Mar 12, 2023
    #2
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...