Security News

First Ever UEFI Rootkit Tied to Sednit APT
2018-12-28 20:02

Researcher at ESET outlines research on the first successful UEFI rootkit used in the wild.

How BMC and UEFI can be exploited to brick servers and take down your data center
2018-12-19 15:00

Out-of-band management systems can be a weak link to securing your data center. Here's how a debug utility can be leveraged to brick your systems.

Week in review: First-ever UEFI rootkit, Apple DEP vulnerability, new tactics subvert traditional security measures
2018-09-30 18:48

Here’s an overview of some of last week’s most interesting news and articles: What do you mean by storage encryption? Depending on the threat context and how you define “storage encryption,” it...

Resident evil: Inside a UEFI rootkit used to spy on govts, made by you-know-who (hi, Russia)
2018-09-28 02:07

Deep dive into motherboard firmware-lurking code A UEFI rootkit, believed to have been built from an anti-thief software program by Kremlin spies to snoop on European governments, has been...

Cybersecurity Researchers Spotted First-Ever UEFI Rootkit in the Wild
2018-09-27 14:33

Cybersecurity researchers at ESET have unveiled what they claim to be the first-ever UEFI rootkit being used in the wild, allowing hackers to implant persistent malware on the targeted computers...

Russian Cyberspies Use UEFI Rootkit in Attacks
2018-09-27 13:45

Russian cyber-espionage group Fancy Bear is the first threat actor to have used a Unified Extensible Firmware Interface (UEFI) rootkit in a malicious campaign, ESET’s security researchers claim. read more

LoJax: First-ever UEFI rootkit detected in a cyberattack
2018-09-27 12:22

ESET researchers have discovered a cyberattack that used a UEFI rootkit to establish a presence on the victims’ computers. Dubbed LoJax, this rootkit was part of a campaign run by the infamous...

Update Mechanism Flaws Allow Remote Attacks on UEFI Firmware
2018-08-08 11:20

The glitch stems from a functionality intended to allow updates to the UEFI firmware.

Scope of ThinkPwn UEFI Zero Day Expands (Threatpost)
2016-07-05 16:02

The scope of the ThinkPwn UEFI vulnerability disclosed last week has grown past Lenovo and HP laptop firmware to motherboards sold by Gigabyte.