UEFI – TheCyberThrone

BlackLotus – Bypasses Windows Secure Boot

Researchers discovered a malware dubbed BlackLotus, which bypasses Microsoft's Secure Boot, will spawn copycats that were available on the Dark Web and attracts firmware attackers to increase their activity. Starting…

PravinKarthik March 13, 2023

UEFI Firmware Vulnerabilities Patched in Lenovo Laptops

Researchers has identified three vulnerabilities have been discovered in the UEFI firmware of several Lenovo notebooks. Tracked CVE-2022-3430, CVE-2022-3431 and CVE-2022-3432, affecting various Lenovo Yoga, IdeaPad and ThinkBook devices. The…

PravinKarthik November 11, 2022

Moon Bounce ! UEFI Firmware Implant

A known Chinese APT actor using an UEFI implant to maintain stealthy persistence across reboots, disk formatting or disk replacements is into limelight shows that the Threat actors (APT 41)…

PravinKarthik January 21, 2022

FinFisher hits Windows with UEFI Rootkit

FinFisher commercially developed for surveillance has been upgraded to infect Windows devices using a UEFI bootkit using a trojanized Windows Boot Manager. FinFisher is a spyware toolset for Windows, macOS,…

PravinKarthik September 29, 2021