» »

LoJax: First UEFI rootkit found in the wild

LoJax: First UEFI rootkit found in the wild

Iatromantis ::

LoJax: First UEFI rootkit found in the wild, courtesy of the Sednit group


Our investigation has determined that this malicious actor was successful at least once in writing a malicious UEFI module into a system’s SPI flash memory. This module is able to drop and execute malware on disk during the boot process. This persistence method is particularly invasive as it will not only survive an OS reinstall, but also a hard disk replacement. Moreover, cleaning a system’s UEFI firmware means re-flashing it, an operation not commonly done and certainly not by the typical user.

Our research has shown that the Sednit operators used different components of the LoJax malware to target a few government organizations in the Balkans as well as in Central and Eastern Europe.

+ The Register:


Vredno ogleda ...

TemaSporočilaOglediZadnje sporočilo
TemaSporočilaOglediZadnje sporočilo

Odkritih 13 kritičnih ranljivosti AMD Ryzen in EPYC procesorjev (strani: 1 2 3 )

Oddelek: Novice / Procesorji
10810453 (3782) rdecaluc

Ranljivost v AMD Ryzen procesorjih

Oddelek: Strojna oprema
18985 (450) FireSnake

Kako bootati iz USB na Windows tablici?

Oddelek: Operacijski sistemi
11959 (608) Compufreek

Nič popravkov za okužen Windows (strani: 1 2 )

Oddelek: Novice / Varnost
508208 (6049) Jst

Computer infected

Oddelek: Pomoč in nasveti
81057 (868) boss-tech

Več podobnih tem