"BlackLotus Becomes First UEFI Bootkit Malware to Bypass Secure Boot on Windows 11"

BlackLotus, a stealthy Unified Extensible Firmware Interface (UEFI) bootkit, is the first publicly known malware that can circumvent Secure Boot protections, making it a major cyber threat. According to a report by ESET, this bootkit can operate on Windows 11 systems with UEFI Secure Boot enabled. UEFI bootkits are launched in the system firmware and provide complete control over the operating system boot process, allowing the disabling of OS-level security features and the execution of arbitrary payloads with elevated privileges during startup. The 80-kilobyte, Assembly, and C-based robust and persistent toolkit is sold for $5,000 (plus $200 per new version). In addition, geofencing capabilities prevent infection of computers in Armenia, Belarus, Kazakhstan, Moldova, Romania, Russia, and Ukraine. This article continues to discuss the BlackLotus UEFI bootkit. 

THN reports "BlackLotus Becomes First UEFI Bootkit Malware to Bypass Secure Boot on Windows 11"