Two exploits are threatening Secure Boot, but Microsoft is only patching one of them
The security standard keeps on failing, spectacularly
Ransomware can now run directly on the CPU, researcher warns
The ghost in the machine is reaching the deepest foundations of the computing infrastructure
Researchers discover "Bootkitty," the first UEFI bootkit for Linux
In a nutshell: A serendipitous discovery led to a new warning of threats against Linux. The open-source platform is becoming an increasingly tasty target for cyber-criminals, and malware writers are now looking to get to the lowest levels of the kernel as they already have on Windows.
BlackLotus UEFI malware source code has leaked on GitHub
WTF?! BlackLotus was first discovered in October 2022, and it has since been described as one of the most complex annd dangerous threats against the secure Windows boot process. The bootkit will likely become even more dangerous in the near future, as a modified version of its source code is now available for download to all.
Microsoft explains how to detect a BlackLotus UEFI bootkit infection
What just happened? Months after researchers discovered the dangerous, "invisible" threat posed by BlackLotus, Microsoft is now giving investigators and sysadmins a detailed guidance over the telltale signs of an ongoing infection.
BlackLotus UEFI bootkit can defeat Secure Boot protection
The myth is real now, and you can't protect yourself from the ghost in the machine