101010.pl

WinbuzzerResearchers have identified “Bootkitty,” the first known UEFI bootkit developed to target Linux systems. <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://mastodon.social/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://mastodon.social/tags/bootkitty" class="mention hashtag" rel="nofollow noopener" target="_blank">#bootkitty</a> <a href="https://mastodon.social/tags/ESET" class="mention hashtag" rel="nofollow noopener" target="_blank">#ESET</a> <a href="https://mastodon.social/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://mastodon.social/tags/bootkits" class="mention hashtag" rel="nofollow noopener" target="_blank">#bootkits</a> <a href="https://buff.ly/4eTjEHi" rel="nofollow noopener" translate="no" target="_blank">https://buff.ly/4eTjEHi</a>

Kevin Karhan :verified:<a href="https://squirrelmob.com/@bedast" class="u-url mention" rel="nofollow noopener" target="_blank">@bedast</a> My problem is that these people refuse to take the correct consequences and migrate away from garbage:<ol><li>You just don't install such garbage on <a href="https://infosec.space/tags/Unix" class="mention hashtag" rel="nofollow noopener" target="_blank">#Unix</a>-esque Systems like <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a>!</li><li><a href="https://infosec.space/tags/CrowdStrike" class="mention hashtag" rel="nofollow noopener" target="_blank">#CrowdStrike</a> is just yet another <a href="https://infosec.space/tags/Scareware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Scareware</a> <a href="https://infosec.space/tags/Scam" class="mention hashtag" rel="nofollow noopener" target="_blank">#Scam</a>.</li><li>The entire business model of <a href="https://infosec.space/tags/AntiVirus" class="mention hashtag" rel="nofollow noopener" target="_blank">#AntiVirus</a> and other Scareware shouldn't exist to begin with.</li><li>3rd party <a href="https://infosec.space/tags/BinaryBlobs" class="mention hashtag" rel="nofollow noopener" target="_blank">#BinaryBlobs</a> on a non-<a href="https://infosec.space/tags/FLOSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#FLOSS</a>'d kernel are just bad!</li><li>It should be <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#Microsoft</a>'s sole tesponsibility to just not allow <a href="https://infosec.space/tags/Rootkits" class="mention hashtag" rel="nofollow noopener" target="_blank">#Rootkits</a> / <a href="https://infosec.space/tags/Bootkits" class="mention hashtag" rel="nofollow noopener" target="_blank">#Bootkits</a> like that to exist eith their blessing aka. <a href="https://infosec.space/tags/Signature" class="mention hashtag" rel="nofollow noopener" target="_blank">#Signature</a> on.</li><li><a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#Windows</a> & <a href="https://infosec.space/tags/WindowsServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#WindowsServer</a> are unbelieveably <a href="https://infosec.space/tags/cursed" class="mention hashtag" rel="nofollow noopener" target="_blank">#cursed</a> and unmaintainable mess that'll make even <a href="https://infosec.space/tags/Solaris" class="mention hashtag" rel="nofollow noopener" target="_blank">#Solaris</a> 7 look clean and sleek.</li><li>The diversity of Linux and Unix-esque distros like <a href="https://infosec.space/tags/BSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#BSD</a>'s make it basically impossible to bmhave such a giant and direct effect.</li><li>The whole issue should've been avoided throug extensive testing because it's certainly so rampant that it would've been picked up by <a href="https://infosec.space/tags/QA" class="mention hashtag" rel="nofollow noopener" target="_blank">#QA</a> testers.</li><li>The fuckedup-ness of <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#CensorBoot</a> aka. "<a href="https://infosec.space/tags/SecureBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#SecureBoot</a>" (which is insecure af - see <a href="https://infosec.space/tags/GoldenKeyBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#GoldenKeyBoot</a>!) is the reason why this results in such catastrophic failures, whereas on <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#Linux</a> one just uses <a href="https://infosec.space/tags/LUKS" class="mention hashtag" rel="nofollow noopener" target="_blank">#LUKS</a> and can easily recover files.</li><li>Most Windows users & -<a href="https://infosec.space/tags/sysadmins" class="mention hashtag" rel="nofollow noopener" target="_blank">#sysadmins</a> neglect <a href="https://infosec.space/tags/Backups" class="mention hashtag" rel="nofollow noopener" target="_blank">#Backups</a> of Windows machines because there is no good way to backup them!</li><li>3rd party kernel binaryblobs are <a href="https://infosec.space/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a>, regardless if "Anti-Malware" or "<a href="https://infosec.space/tags/AntiCheat" class="mention hashtag" rel="nofollow noopener" target="_blank">#AntiCheat</a>" is the claimed functionality.</li><li>If I don't trust <a href="https://infosec.space/tags/WindowsDefender" class="mention hashtag" rel="nofollow noopener" target="_blank">#WindowsDefender</a> then I don't trust Windows or rather Microsoft and thus have to cease using it!</li><li><a href="https://nondeterministic.computer/@mjg59/112816011370924959" rel="nofollow noopener" target="_blank">This shit would not have been possible under Linux</a>!</li></ol>

IT NewsCritical vulnerability affecting most Linux distros allows for bootkits - Enlarge Linux developers are in the process of patching a hig... - <a href="https://arstechnica.com/?p=2001542" rel="nofollow noopener" translate="no" target="_blank">https://arstechnica.com/?p=2001542</a> <a href="https://schleuss.online/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerabilities</a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://schleuss.online/tags/bootkits" class="mention hashtag" rel="nofollow noopener" target="_blank">#bootkits</a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener" target="_blank">#biz</a>⁢ <a href="https://schleuss.online/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#linux</a> <a href="https://schleuss.online/tags/shim" class="mention hashtag" rel="nofollow noopener" target="_blank">#shim</a> <a href="https://schleuss.online/tags/uefi" class="mention hashtag" rel="nofollow noopener" target="_blank">#uefi</a>

Porquerias | 1312 🏴🌵G@KThe <a href="https://kolektiva.social/tags/LogoFail" class="mention hashtag" rel="nofollow noopener" target="_blank">#LogoFail</a> <a href="https://kolektiva.social/tags/UEFI" class="mention hashtag" rel="nofollow noopener" target="_blank">#UEFI</a> <a href="https://kolektiva.social/tags/exploit" class="mention hashtag" rel="nofollow noopener" target="_blank">#exploit</a> is a perfect example of how capitalism fucks everything up. So many people worked so hard on securing UEFI against <a href="https://kolektiva.social/tags/bootkits" class="mention hashtag" rel="nofollow noopener" target="_blank">#bootkits</a> but having a goddamn image load was necessary for capitalist "intellectual property" to be enforced, thus opening this vulnerability for literally every Windows and Linux system with a hardware manufacturer logo loading in boot, which is most of them. <a href="https://arstechnica.com/security/2023/12/just-about-every-windows-and-linux-device-vulnerable-to-new-logofail-firmware-attack/" rel="nofollow noopener" translate="no" target="_blank">https://arstechnica.com/security/2023/12/just-about-every-windows-and-linux-device-vulnerable-to-new-logofail-firmware-attack/</a>This isn't a security fail, it's a <a href="https://kolektiva.social/tags/capitalism" class="mention hashtag" rel="nofollow noopener" target="_blank">#capitalism</a> fail, because the social/legal regime of <a href="https://kolektiva.social/tags/intellectualproperty" class="mention hashtag" rel="nofollow noopener" target="_blank">#intellectualproperty</a> is actually unnecessary and oppressive, and in this case prevented people from designing secure systems.

Dennis "D.C." Dietrich"Multiple security <a href="https://social.advancedsoftware.engineering/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerabilities</a> collectively named <a href="https://social.advancedsoftware.engineering/tags/LogoFAIL" class="mention hashtag" rel="nofollow noopener" target="_blank">#LogoFAIL</a> affect image-parsing components in the <a href="https://social.advancedsoftware.engineering/tags/UEFI" class="mention hashtag" rel="nofollow noopener" target="_blank">#UEFI</a> code from various vendors. Researchers warn that they could be exploited to hijack the execution flow of the booting process and to deliver <a href="https://social.advancedsoftware.engineering/tags/bootkits" class="mention hashtag" rel="nofollow noopener" target="_blank">#bootkits</a>." <a href="https://social.advancedsoftware.engineering/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://social.advancedsoftware.engineering/tags/firmware" class="mention hashtag" rel="nofollow noopener" target="_blank">#firmware</a> <a href="https://www.bleepingcomputer.com/news/security/logofail-attack-can-install-uefi-bootkits-through-bootup-logos/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/logofail-attack-can-install-uefi-bootkits-through-bootup-logos/</a>

IT NewsUnkillable UEFI malware bypassing Secure Boot enabled by unpatchable Windows flaw - Enlarge (credit: Aurich Lawson | Getty Images) Researchers on ... - <a href="https://arstechnica.com/?p=1921876" rel="nofollow noopener" target="_blank">https://arstechnica.com/?p=1921876</a> <a href="https://schleuss.online/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#vulnerabilities</a> <a href="https://schleuss.online/tags/features" class="mention hashtag" rel="nofollow noopener" target="_blank">#features</a> <a href="https://schleuss.online/tags/bootkits" class="mention hashtag" rel="nofollow noopener" target="_blank">#bootkits</a> <a href="https://schleuss.online/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://schleuss.online/tags/windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#windows</a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener" target="_blank">#biz</a>⁢ <a href="https://schleuss.online/tags/uefi" class="mention hashtag" rel="nofollow noopener" target="_blank">#uefi</a>

IT NewsOne of the Internet’s most aggressive threats could take UEFI malware mainstream - Enlarge (credit: Getty Images) One of the Internet’s most aggressive threats has just gotten mean... - <a href="https://arstechnica.com/?p=1727276" rel="nofollow noopener" target="_blank">https://arstechnica.com/?p=1727276</a> <a href="https://schleuss.online/tags/unifiedextensiblefirmwareinterface" class="mention hashtag" rel="nofollow noopener" target="_blank">#unifiedextensiblefirmwareinterface</a> <a href="https://schleuss.online/tags/bootkits" class="mention hashtag" rel="nofollow noopener" target="_blank">#bootkits</a> <a href="https://schleuss.online/tags/trickbot" class="mention hashtag" rel="nofollow noopener" target="_blank">#trickbot</a> <a href="https://schleuss.online/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener" target="_blank">#biz</a>&it <a href="https://schleuss.online/tags/tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#tech</a> <a href="https://schleuss.online/tags/uefi" class="mention hashtag" rel="nofollow noopener" target="_blank">#uefi</a>

Recent searches

Search options

Administered by:

Server stats:

#bootkits