'Bootkitty' Malware Can Infect a Linux Machine's Boot Process
This appears to be the first UEFI bootkit that goes beyond Windows and targets Linux machines, according to ESET security researchers.
Researchers discover first UEFI bootkit malware for Linux
The first UEFI bootkit specifically targeting Linux systems has been discovered, marking a shift in stealthy and hard-to-remove bootkit threats that previously focused on Windows.
Found in the wild: The world’s first unkillable UEFI bootkit for Linux
By infecting the firmware that runs immediately before the operating system loads, these UEFI bootkits continue to run even when the hard drive is replaced or reformatted. Now the same type of chip-dwelling malware has been found in the wild for backdooring Linux machines.
Researchers Discover "Bootkitty" – First UEFI Bootkit Targeting Linux Kernels
Cybersecurity researchers have shed light on what has been described as the first Unified Extensible Firmware Interface (UEFI) bootkit designed for Linux systems. "The bootkit's main goal is to disable the kernel's signature verification feature and to preload two as yet unknown ELF binaries via the Linux init process (which is the first process executed by the Linux kernel during system startup),
First-ever UEFI bootkit for Linux in the works, experts say
Bootkitty doesn’t bite… yet Security researchers say they've stumbled upon the first-ever UEFI bootkit targeting Linux, illustrating a key moment in the evolution of such tools.… Dubbed "Bootkitty" by Slovak security shop ESET,
Bootkitty: Analyzing the first UEFI bootkit for Linux
ESET's discovery of the first UEFI bootkit designed for Linux sendss an important message: UEFI bootkits are no longer confined to Windows systems alone.
Rogue VPN servers used to spread malware via malicious updates
Researchers from AmberWolf find two flaws in popular VPN products Flaws can be abused to get the VPNs to connect to malicious ...
North Korean hackers use disguised apps to target Macs with hidden malware
Tech expert Kurt “CyberGuy" Knutsson says North Korean hackers hide malware in macOS apps, bypassing Mac security checks.
PCMag on MSN2d
Hackers Weaponize Old Avast Driver to Install Windows Malware
An old Avast Anti-Rootkit driver is being abused to deliver Windows malware, according to a report from cybersecurity firm ...
Salt Typhoon targets telcos again with backdoor GhostSpider malware
While GhostSpider took all the limelight, Salt Typhoon was also spotted using other, never-seen-before variants, including a ...
The Hacker News9d
New Stealthy BabbleLoader Malware Spotted Delivering WhiteSnake and Meduza Stealers
New stealthy malware loader BabbleLoader evades antivirus and sandboxes, delivering WhiteSnake and Meduza stealers globally.
PCMag on MSN5d
Microsoft Defender Is Not Enough Anymore—This Malware Gets Around It
Malware hidden inside a fake NFT game ignores two-factor authentication and gains access to a victim's Google account via a ...
This devious malware is targeting Facebook accounts to steal credit card data
Python NodeStealer, an infamous infostealer that targeted Facebook Business accounts, has been upgraded with new and ...
JD Supra3d
VPS of MI, PLLC Announces Data Breach Following Discovery of Malware
On November 15, 2024, Visiting Physician Services (“VPS of MI, Inc.”) filed a notice of data breach with the Attorney General ...
Swiss cheesed off as postal service used to spread malware
Switzerland's National Cyber Security Centre (NCSC) has issued an alert about malware being spread via the country's postal ...
The Hacker News13d
New RustyAttr Malware Targets macOS Through Extended Attribute Abuse
North Korean Lazarus Group uses extended macOS file attributes to deliver RustyAttr malware to unsuspecting users ...
SecurityWeek14h
Source Code of $3,000-a-Month macOS Malware ‘Banshee Stealer’ Leaked
The Banshee Stealer macOS malware operation, which emerged earlier this year, was reportedly shut down following a source ...