The bootkit is able to load unsigned drivers to hijack the ESP.
Source: Read More (Latest topics for ZDNet in Security)
You might be interested in …
[ThreatPost] Zero-Click Flaws in Widely Used UPS Devices Threaten Critical Infratructure
The ‘TLStorm’ vulnerabilities, found in APC Smart-UPS products, could allow attackers to cause both cyber and physical damage by taking down critical infrastructure. Source: Read More (Threatpost)
[HackerNews] Popular NPM Package Hijacked to Publish Crypto-mining Malware
The U.S. Cybersecurity and Infrastructure Security Agency on Friday warned of crypto-mining malware embedded in “UAParser.js,” a popular JavaScript NPM library with over 6 million weekly downloads, days after the NPM repository moved to remove three rogue packages that were found to mimic the same library. <!–adsense–> The supply-chain attack targeting the open-source library saw three Source: […]
[SecurityWeek] Apple Unveils VPN-Like Service and New Privacy Features at WWDC 2021
read more Source: Read More (SecurityWeek RSS Feed)