Is EFI system partition infiltration becoming a commodity for advanced security threats?
A simple, flexible, and secure solution for silicon initialization on AMD CPUs
What just happened? Months after researchers discovered the dangerous, "invisible" threat posed by BlackLotus, Microsoft is now giving investigators and sysadmins a detailed guidance over the telltale signs of an ongoing infection.
The myth is real now, and you can't protect yourself from the ghost in the machine
Secure Boot isn't secure if the settings are wrong
Why it matters: "BlackLotus" is being offered on underground forums as an all-powerful firmware rootkit, capable of surviving any removal effort and bypassing the most advanced Windows protections. If actual malware samples can prove the offer is real, of course.
The CosmicStrand rootkit is the latest indication that UEFI malware may be more common than previously thought
AMD promises to fix fTPM issue that causes stuttering and freezes in Windows 10 and Windows 11 for Ryzen users
Firmware updates are on the way, plus some temporary workarounds
Firmware patches are on the way
Supply chain infrastructure and enterprise systems are at risk
Persistence that can survive most hardware upgrades