bootkit – Weekly Geek

Microsoft will take nearly a year to finish patching new 0-day Secure Boot bug

reader comments 21 with Earlier this week, Microsoft released a patch to fix a Secure Boot bypass bug used by the BlackLotus bootkit we reported on in March. The original vulnerability, CVE-2022-21894, was patched in January, but the new patch for CVE-2023-24932 addresses another actively exploited workaround for systems running Windows 10 and 11 and… Read More »

Discovery of new UEFI rootkit exposes an ugly truth: The attacks are invisible to us

Enlarge (credit: Getty Images) Researchers have unpacked a major cybersecurity find—a malicious UEFI-based rootkit used in the wild since 2016 to ensure computers remained infected even if an operating system is reinstalled or a hard drive is completely replaced. The firmware compromises the UEFI, the low-level and highly opaque chain of firmware required to boot up… Read More »