Bleeping Computer

FinFisher malware hijacks Windows Boot Manager with UEFI bootkit

Commercially developed FinFisher malware now can infect Windows devices using a UEFI bootkit that it injects in the Windows Boot Manager. FinFisher (also known as FinSpy and Wingbird) is a ...
Bleeping Computer

New UEFI bootkit used to backdoor Windows devices since 2012

A newly discovered and previously undocumented UEFI (Unified Extensible Firmware Interface) bootkit has been used by attackers to backdoor Windows systems by hijacking the Windows Boot Manager since ...
TWCN Tech News

Event ID 1799, Boot Manager signed with Windows UEFI CA 2023 was installed successfully

Event ID 1799 is the event logged when a boot manager signed by the Windows UEFI CA 2023 certificate (the latest and most secure) runs on startup. This means all the security measures are in place, ...
WeLiveSecurity

Under the cloak of UEFI Secure Boot: Introducing CVE-2024-7344

ESET researchers have discovered a vulnerability that allows bypassing UEFI Secure Boot, affecting the majority of UEFI-based systems. This vulnerability, assigned CVE-2024-7344, was found in a UEFI ...
Ars Technica

Stealthy UEFI malware bypassing Secure Boot enabled by unpatchable Windows flaw

Researchers on Wednesday announced a major cybersecurity find—the world’s first-known instance of real-world malware that can hijack a computer’s boot process even when Secure Boot and other advanced ...
Neowin

KB5053484: Microsoft shares new PowerShell script for updated Windows 11/10 boot media0 0

Back in February of 2024, Microsoft announced that it was rolling out new 2023 Secure Boot Certificate Authority (CA) or keys that would replace the previous one from 2011 when Windows 8 was around ...