UEFI

ESET researchers find the first UEFI bootkit designed specifically to target Linux systems, marking a shift in bootkits that previously focused on Windows

Article then proceeds to describe a toy GRUB wrapper bootkit that has nothing to do with UEFI firmware (other than running on UEFI systems like any other UEFI bootloader), does not persist in UEFI fir...

Binarly: UEFI Secure Boot is completely compromised on 200+ device models sold by Acer, Dell, Gigabyte, Intel, and Supermicro due to a cryptographic key leak

hundreds of devices from Dell, Supermicro and more all affected, here's what we know Adam Conway / XDA Developers : PKFail puts hundreds of computers and laptops at risk and renders Secure Boot useles...

Researchers detail PixieFail, a set of nine vulnerabilities in UEFI firmware from five of the top suppliers that helps hackers infect devices with malware

PixieFail is a huge deal for cloud and data centers.  For the rest, less so.  —  UEFI firmware from five of the leading suppliers …

Researchers unveil LogoFAIL, an attack that defeats UEFI boot protections in nearly all Windows and Linux computers and can be remotely executed in many cases

Researchers detail UEFI bootkit BlackLotus, capable of bypassing UEFI Secure Boot even on up-to-date Windows 11 systems and selling for $5K since October 2022

The first in-the-wild UEFI bootkit bypassing UEFI Secure Boot on fully updated UEFI systems is now a reality

Researcher: 290+ MSI motherboards have firmware with a default UEFI Secure Boot setting that lets any OS run, even those with a wrong or missing signature

Bill Toulas / BleepingComputer :

Intel confirms its proprietary UEFI code appears to have been leaked by a third party; the Alder Lake BIOS source code was leaked to 4chan and GitHub

Hack's perpetrator and origins remain unknown.  —  We recently broke the news that Intel's Alder Lake BIOS source code had been leaked …

Kaspersky researchers find a malicious UEFI-based rootkit used in the wild since 2016 that keeps PCs infected after an OS reinstall or a hard drive replacement

Turns out they're not all that rare.  We just don't know how to find them.  —  Researchers have unpacked a major cybersecurity find … Source: Securelist .

Amid a shift in malware targeting UEFI firmware, Kaspersky details new MoonBounce UEFI bootkit that can survive even after swapping the infected PC's hard drive

Catalin Cimpanu / The Record :

Researchers were able to quickly circumvent security protections of a laptop that followed virtually all NIST recommendations, including TPM and UEFI SecureBoot