Bleeping Computer

BlackLotus bootkit bypasses UEFI Secure Boot on patched Windows 11

The developers of the BlackLotus UEFI bootkit have improved the malware with Secure Boot bypass capabilities that allow it to infect even fully patched Windows 11 systems. BlackLotus is the first ...
WeLiveSecurity

Under the cloak of UEFI Secure Boot: Introducing CVE-2024-7344

ESET researchers have discovered a vulnerability that allows bypassing UEFI Secure Boot, affecting the majority of UEFI-based systems. This vulnerability, assigned CVE-2024-7344, was found in a UEFI ...
Bleeping Computer

New HybridPetya ransomware can bypass UEFI Secure Boot

A recently discovered ransomware strain called HybridPetya can bypass the UEFI Secure Boot feature to install a malicious application on the EFI System Partition. HybridPetya appears inspired by the ...
Neowin

Microsoft fixes BlackLotus UEFI Secure Boot security flaw on Windows 11, Windows 10, Servers

In this release, to mitigate CVE-2023-24932, the Windows Updates for May 9, 2023 will include: Updates for Windows released on or after May 9, 2023 to address vulnerabilities discussed in ...
WeLiveSecurity

BlackLotus UEFI bootkit: Myth confirmed

The number of UEFI vulnerabilities discovered in recent years and the failures in patching them or revoking vulnerable binaries within a reasonable time window hasn’t gone unnoticed by threat actors.