New vicious UEFI bootkit vuln found for Windows 8

Status
Not open for further replies.
Z

ZeroDay

Thread author
Security researchers have discovered security shortcomings in Windows 8 that create a means to infect the upcoming operating system with rootkit-style malware.

Italian security consultants ITSEC discovered the security hole following an analysis of the Unified Extensible Firmware Interface (UEFI), a successor to the legacy BIOS firmware interface, that Microsoft began fully supporting with 64-bit versions of Windows 7.

ITSEC analysed the UEFI platform now that Microsoft has ported old BIOS and MBR's boot loader to the new UEFI technology in Windows 8. Andrea Allievi, a senior security researcher at ITSEC, was able to use the research to cook up what's billed as the first ever UEFI bootkit designed to hit Windows 8. The proof-of-concept malware is able to defeat Windows 8's Kernel Patch Protection and Driver Signature Enforcement policy
Click to expand...

Article
 
Ink

Ink

Administrator
Verified
Staff Member
Well-known
Jan 8, 2011
22,403
I read the article, but if SecureBoot is enabled this POC bootkit doesn't affect Windows 8 UEFI?

And is SecureBoot the technology that prevents Linux (ie. another OS) being installed?
 
Z

ZeroDay

Thread author
1) Yes I believe that is correct.

2) From what I've read secure boot just requires others OS's to provide a certificate, I know Ubuntu have taken that route.
 
Nikos

Nikos

New Member
Jul 19, 2012
357
Guys what exactly i a bootkit?

Can you explain please in simpler words?
 
Status
Not open for further replies.

Similar threads

silversurfer
    • Like
    • +Reputation
Malware News Glupteba Botnet Evades Detection with Undocumented UEFI Bootkit
Replies
0
Views
804
Security News
silversurfer
silversurfer
MuzzMelbourne
    • Like
    • Applause
NSA Releases Guide to Combat Powerful BlackLotus Bootkit Targeting Windows Systems
Replies
0
Views
1,190
News Archive
MuzzMelbourne
MuzzMelbourne
silversurfer
    • Like
    • +Reputation
    • Sad
  • Locked
BlackLotus Becomes First UEFI Bootkit Malware to Bypass Secure Boot on Windows 11
Replies
20
Views
2,384
News Archive
simmerskool
simmerskool

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top