Bleeping Computer

New UEFI bootkit used to backdoor Windows devices since 2012

A newly discovered and previously undocumented UEFI (Unified Extensible Firmware Interface) bootkit has been used by attackers to backdoor Windows systems by hijacking the Windows Boot Manager since ...
Bleeping Computer

New UEFI flaw enables pre-boot attacks on motherboards from Gigabyte, MSI, ASUS, ASRock

The UEFI firmware implementation in some motherboards from ASUS, Gigabyte, MSI, and ASRock is vulnerable to direct memory access (DMA) attacks that can bypass early-boot memory protections. The ...

Windows and Linux users: The deadline to update Secure Boot keys is near

The clock is ticking for Windows and Linux users to update cryptographic keys that protect their systems against ...
TechSpot

For years, some Gigabyte and Asus motherboards carried UEFI malware

In context: Security firm ESET discovered the first UEFI rootkit that had been used in the wild back in 2018. This type of persistent threat used to be the subject of theoretical discussions among ...

A crucial Windows security certificate just expired - how to check your PC

A crucial Windows security certificate just expired - how to check your PC ...
Neowin

Beware: Windows PCs with Asus and Gigabyte motherboards housing CosmicStrand UEFI rootkit

The security threat research team at antivirus-maker Kaspersky has discovered a malware called "CosmicStrand". The malware, in fact, isn't new as an earlier variant of this dubbed "Spy Shadow trojan" ...
WeLiveSecurity

BlackLotus UEFI bootkit: Myth confirmed

The number of UEFI vulnerabilities discovered in recent years and the failures in patching them or revoking vulnerable binaries within a reasonable time window hasn’t gone unnoticed by threat actors.