:: [DNG] BlackLotus malware, Secure Bo…
Forside
Slet denne besked
Besvar denne besked
Skribent: sawbona
Dato:  
Til: dng
Emne: [DNG] BlackLotus malware, Secure Boot and Windows machines
Hello:

Found this article at The Register this morning:

https://www.theregister.com/2023/03/01/blacklotus_malware_eset/

---
It's official: BlackLotus malware can bypass Secure Boot on Windows
machines.
---

--- quote article ---

"... by targeting UEFI the BlackLotus malware loads before anything
else in the booting process, including the operating system and any
security tools that could stop it."

--- /quote ---

--- quote commentard ---

"Other than against WSL users this type of rootkit wouldn't be able
to load it's windows specific last stage payload under a linux
system..."

--- /quote ---

I wonder what's next?

Best,

A.