Digital Trends

‘LoJax’ rootkit malware can infect UEFI, a core computer interface

Modern computers utilize what is known as a Unified Extensible Firmware Interface (UEFI) to get up and running. When you press the power button on your Mac or PC, the UEFI begins communicating with ...
CSOonline

Sophisticated UEFI rootkit of Chinese origin shows up again in the wild after 3 years

A sophisticated rootkit that’s able to insert itself into the lowest levels of Windows computers — the motherboard firmware — has been making victims since 2020 after disappearing from the radar for ...
Threat Post

First-Ever UEFI Rootkit Tied to Sednit APT

Researcher at ESET outlines research on the first successful UEFI rootkit used in the wild. The discussion of Sednit was part of the 35C3 conference, and a session given by Frédéric Vachon, a malware ...
Guru3D.com

Researchers find uefi rootkit that is actively being abused

ESET researchers have shown that the Sednit operators used different components of the LoJax malware to target a few government organizations in the Balkans as well as in Central and Eastern Europe.
ITWire

iTWire - ESET team finds first UEFI rootkit in the wild

UEFI rootkits are more dangerous than other attack tools as they persist on systems after re-installation or even replacement of a hard drive. Since the rootkit it found was tied to the Sednit ...
Neowin

ESET uncovers first case of a UEFI rootkit used by Sednit group in the wild

Security experts at ESET have announced the discovery of the very first case of Unified Extensible Firmware Interface (UEFI) rootkit in the wild referred to as LoJax. This malware was used by advanced ...
GIGAZINE

UEFI rootkit 'Cosmic Strand' that remains infected even if the OS is reinstalled or the storage is replaced, damages ASUS and GIGABYTE motherboards

Since 2016, Chinese hackers have been using malware that is not detected on the firmware image of some motherboards. This malware is expressed as 'UEFI rootkit' by combining According to cybersecurity ...
techtimes

Hacking Team Uses UEFI BIOS Rootkit And You Can't Simply Get Rid Of It

The Hacking Team, the surveillance software maker, apparently deploys the Unified Extensible Firmware Interface (UEFI) Basic Input/Output System (BIOS) rootkit to ensure that the malware stays put in ...
Network World

Hacking Team’s malware uses UEFI rootkit to survive OS reinstalls

Surveillance software maker Hacking Team has provided its government customers with the ability to infect the low-level firmware found in laptops and other computers that they wanted to spy on. The ...
TechSpot

ESET has discovered the first UEFI rootkit in the wild

Why it matters: Infecting the firmware that loads an operating system gives persistence capabilities like few other pieces of malware from the past. The only means of removing modified UEFIs is to ...
TechSpot

BlackLotus, the new UEFI rootkit that makes security researchers worry

Why it matters: "BlackLotus" is being offered on underground forums as an all-powerful firmware rootkit, capable of surviving any removal effort and bypassing the most advanced Windows protections. If ...
PC World

Hacking Team’s malware uses a UEFI rootkit to survive operating system reinstalls

Surveillance software maker Hacking Team has provided its government customers with the ability to infect the low-level firmware found in laptops and other computers that they wanted to spy on. The ...