BlackLotus Becomes First UEFI Bootkit Malware to Bypass Secure Boot on Windows 11
Tags
cmtmf-attack-pattern: Geofencing
country: Armenia Belarus Kazakhstan Moldova Romania Slovakia Ukraine
maec-delivery-vectors: Watering Hole
attack-pattern: Bootkit - T1542.003 Exploits - T1587.004 Exploits - T1588.005 Firmware - T1592.003 Geofencing - T1627.001 Geofencing - T1581 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 System Firmware - T1542.001 Vulnerabilities - T1588.006 Bootkit - T1067 Hypervisor - T1062 System Firmware - T1019 System Firmware
Show in Graph
Common Information
Type Value
UUID deae1b5b-5cb9-4b27-8a6c-def8e6e71ba7
Fingerprint b43c5d760ba18687
Analysis status DONE
Considered CTI value 0
Text language
Published March 1, 2023, 5:02 p.m.
Added to db March 1, 2023, 1:26 p.m.
Last updated Nov. 6, 2024, 11:12 p.m.
Headline BlackLotus Becomes First UEFI Bootkit Malware to Bypass Secure Boot on Windows 11
Title BlackLotus Becomes First UEFI Bootkit Malware to Bypass Secure Boot on Windows 11
Detected Hints/Tags/Attributes 46/4/1
Source URLs
Redirection Url
Details Source https://thehackernews.com/2023/03/blacklotus-becomes-first-uefi-bootkit.html
URL Provider
Details Provider Source level domain
Details thehackernews.com thehackernews.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 118 The Hacker News https://feeds.feedburner.com/TheHackersNews 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 48 
cve-2022-21894