uefi – Page 8 – WindowsTechs.com

Rare Bootkit Malware Targets North Korea-Linked Diplomats

Posted on October 5, 2020 by Tara Seals

The MosaicRegressor espionage framework is newly discovered and appears to be the work of Chinese-speaking actors. Continue reading Rare Bootkit Malware Targets North Korea-Linked Diplomats→

MosaicRegressor: Lurking in the Shadows of UEFI

Posted on October 5, 2020 by Mark Lechtik

We found a compromised UEFI firmware image that contained a malicious implant. To the best of our knowledge, this is the second known public case where malicious UEFI firmware in use by a threat actor was found in the wild. Continue reading MosaicRegressor: Lurking in the Shadows of UEFI→

Does the TPM check the addition/removal of boot-entries

Posted on October 3, 2020 by Robindev

I have an issue that has been puzzling me tegarding the TPM checks on my machine, and I cannot find much documentation about the checks a TPM exactly performs. The issue is the following;
I have a Lenovo Thinkpad that has secure-boot and b… Continue reading Does the TPM check the addition/removal of boot-entries→

Why does openSUSE sporadically prompt during boot to trust its built-in certificate?

Posted on September 17, 2020 by PJTraill

The conundrum
My wife’s laptop has been running openSUSE Leap 15.0 for several years, and she has once or twice been flummoxed by this prompt at the very beginning of the boot sequence, most recently this morning:
Trust openSUSE Certificat… Continue reading Why does openSUSE sporadically prompt during boot to trust its built-in certificate?→

Does (UEFI) secure boot provide security advantages over TPM measured boot?

Posted on August 15, 2020 by Feiyeung

Given how UEFI secure boot appears later than TPM, i had assumption that it provides advantages over TPM.
As i read into each, it appears to me that the TPM measurements to each stage would provide about the same level of integrity guarant… Continue reading Does (UEFI) secure boot provide security advantages over TPM measured boot?→

UEFI secure boot anti-rollback

Posted on June 18, 2020 by Melab

I haven’t seen any seen mechanism by which UEFI can detect the most recent update to a binary from being swapped out for an older binary that was signed with the same key as the up-to-date binary. Google’s vboot is the only PC firmware I k… Continue reading UEFI secure boot anti-rollback→

TPM Command CreatePrimary UEFI App

Posted on April 30, 2020 by Azra

I’m trying to implement a UEFI App for the CreatePrimary TPM Command.
i understand i need to pack the command parameters in a canonical way and swap the byte order to Big Endiann.
Still i get the an error response code for some reason.
wha… Continue reading TPM Command CreatePrimary UEFI App→

Is it possible to make a laptop useless to thieves?

Posted on April 12, 2020 by Cilyan

I was robbed…

That included my Linux notebook and my company’s notebook. Both are encrypted.
Mine is encrypted with LVM over LUKS, using a passphrase to unlock the hard drive once the kernel has been started by the UEFI. But Secure Boot… Continue reading Is it possible to make a laptop useless to thieves?→

UEFI – Disabling SMM – System Management Mode

Posted on April 3, 2020 by St1cky

My Question is very simple, how to disable the SMM. I know there are some Methodes they are listed here.
Ref: https://patents.google.com/patent/US9977682B2/en

But I have found nothing where it is explained in more detail. For Newbies, its… Continue reading UEFI – Disabling SMM – System Management Mode→

Microsoft Removes Standalone Security Update Causing Issues on Some PCs

Posted on March 1, 2020 by Russell Smith

Microsoft UEFI Revocation List File update causes problems on some devices. Here’s what you need to know about the latest Windows Update problem.

The post Microsoft Removes Standalone Security Update Causing Issues on Some PCs appeared first on Petri.

Continue reading Microsoft Removes Standalone Security Update Causing Issues on Some PCs→