Cyber Security

Hunting down BlackLotus – Week in security with Tony Anscombe

by Philip Choo 0 Comments

Microsoft releases guidance on how organizations can check their systems for the presence of BlackLotus, a powerful threat first analyzed by ESET researchers

Microsoft has released guidance on how organizations can detect BlackLotus, a powerful threat that was first analyzed by ESET researchers. BlackLotus is a UEFI bootkit that is capable of operating on Windows systems even with UEFI Secure Boot enabled, giving them full control over Windows’s boot process all while disabling various OS security mechanisms. What exactly should organizations look for in order to determine if their systems had been compromised by this powerful malware? Find out in the video.

Make sure to also review our notes on mitigating and remediating BlackLotus attacks.

This article was originally published by Welivesecurity.com. Read the original article here.

Articles You May Like

Prepare for the Azure Security Engineer Associate certification
Critical Firmware Vulnerability in Gigabyte Systems Exposes ~7 Million Devices
New Mirai Variant Campaigns are Targeting IoT Devices
All the Nvidia news announced by Jensen Huang at Computex
Serious Security: That KeePass “master password crack”, and what we can learn from it

Leave a Reply

Your email address will not be published. Required fields are marked *