Firmware – Page 8 – WindowsTechs.com

BlackLotus Malware Hijacks Windows Secure Boot Process

Posted on March 8, 2023 by Bruce Schneier

Researchers have discovered malware that “can hijack a computer’s boot process even when Secure Boot and other advanced protections are enabled and running on fully updated versions of Windows.”

Dubbed BlackLotus, the malware is what’s known as a UEFI bootkit. These sophisticated pieces of malware target the UEFI—short for Unified Extensible Firmware Interface—the low-level and complex chain of firmware responsible for booting up virtually every modern computer. As the mechanism that bridges a PC’s device firmware with its operating system, the UEFI is an OS in its own right. It’s located in an …

Continue reading BlackLotus Malware Hijacks Windows Secure Boot Process→

Stadia Controller’s Two Extra Buttons Get Seen With WebHID

Posted on February 13, 2023 by Donald Papp

The Google Stadia game streaming service relied on a proprietary controller. It was a pretty neat piece of hardware that unfortunately looked destined for landfills when Google announced that Stadia …read more Continue reading Stadia Controller’s Two Extra Buttons Get Seen With WebHID→

When did Intel release Boot Guard? [closed]

Posted on February 9, 2023 by Michael Altfield

What was the first processor that Intel released that supported Boot Guard?
Intel Boot Guard provides mechanisms to authenticate the firmware on the system at boot-time. Unfortunately, I could find very little information about the history… Continue reading When did Intel release Boot Guard? [closed]→

How do you detect attacks on Intel ME firmware and the AMD equivalent?

Posted on January 19, 2023 by Sir Muffington

Since there are quite a few exploits of Intel ME firmware in the CPU (same applies to AMD), I would like to know what SIEM solutions are there for detecting these kinds of attacks.
To be more exact, I would like to know how to detect known… Continue reading How do you detect attacks on Intel ME firmware and the AMD equivalent?→

Advanced threat predictions for 2023

Posted on November 14, 2022 by GReAT

We polled our experts from the GReAT team and have gathered a small number of key insights about what APT actors are likely to focus on in 2023. Continue reading Advanced threat predictions for 2023→

How to tell if a mouse/keyboard doesn’t have on-board memory?

Posted on November 10, 2022 by empleat

How to tell if a mouse/keyboard doesn’t have accessible on-board memory? I know if it has: there are tells like custom macro buttons for example, and I was told by A4tech support: if a mouse doesn’t install any drivers – it doesn’t have on… Continue reading How to tell if a mouse/keyboard doesn’t have on-board memory?→

Financial organizations fail to act on firmware breaches

Posted on September 12, 2022 by Help Net Security

In this Help Net Security video, Michael Thelander, Director Product Marketing at Eclypsium, discusses how financial organizations are failing to act despite the majority experiencing a firmware-related breach. 92% of CISOs in finance believe adversari… Continue reading Financial organizations fail to act on firmware breaches→

Could the USB-Receiver of a wireless mouse/keyboard be a security risk?

Posted on August 31, 2022 by CherryBlossom1878

I bought a wireless keyboard and mouse from a no-name brand (made in China) with a USB receiver. I’m currently wondering if the USB receiver could be compromised in a way, that my computer could get infected with malware or that allows som… Continue reading Could the USB-Receiver of a wireless mouse/keyboard be a security risk?→

For someone who deals with dangerous files and websites frequently what is the way to avoid getting infected by spyware/virus permanently?

Posted on July 28, 2022 by User4857

For someone who deals with dangerous files and websites frequently or even for the general user what is the way to avoid getting infected by spyware/virus permanently?
I am looking to buy a new laptop and the problem mentioned above is wha… Continue reading For someone who deals with dangerous files and websites frequently what is the way to avoid getting infected by spyware/virus permanently?→

APT trends report Q2 2022

Posted on July 28, 2022 by GReAT

This is our latest summary of advanced persistent threat (APT) activity, focusing on events that we observed during Q2 2022. Continue reading APT trends report Q2 2022→