Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

Microsoft fixes BlackLotus UEFI vulnerability on Win10 / Win11 to bypass secure startup

2025-02-28 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > IT Information >

Share

Shulou(Shulou.com)11/24 Report--

CTOnews.com, May 10, ESET security researchers discovered BlackLotus in March this year, which is believed to be the first UEFI bootkit malware that can bypass Secure Boot on Win11 systems.

Microsoft today released KB5025885 updates for Win10, Win11, and Windows Server, focusing on fixing this vulnerability in tracking number CVE-2023-24932.

Microsoft's official summary information is attached to CTOnews.com as follows:

This article describes how to use BlackLotus UEFI bootkit tracked by CVE-2023-24932 to prevent security startup security features from bypassing public disclosure, and how to enable protection and guidelines to update bootable media.

Bootkit is a malicious program designed to load in the sequence of devices as early as possible in order to control operating system startup.

Secure boot recommends that Microsoft create a secure and trusted path from the Unified Extensible firmware Interface (UEFI) through the trusted boot sequence of the Windows kernel.

Secure startup helps prevent bootkit malware in the startup sequence. Disabling secure startup puts the device at risk of being infected by bootkit malware.

Fix the secure startup bypass described in CVE-2023-24932 that requires the startup manager to be undone. This may cause problems with the startup configuration of some devices.

The security update of May 9, 2023 provides configuration options to enable security startup bypass protection manually, but not automatically.

Before enabling these protections, you must verify that the device and all bootable media are updated and ready to make this security hardening change.

Customers using Microsoft cloud-based solutions should follow the guidelines in the update bootable media / Azure cloud.

Related readings:

"ESET discovers BlackLotus malware: the first UEFI bootkit to bypass Secure Boot on Win11"

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: Security malicious update device software protection media sequence Microsoft guide system configuration vulnerability operating system personnel information kernel function available in vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple Huawei Linux Shulou Tech Info vpn MariaDB Microsoft macOS Apple Redmi Docker OPPO Reno Shulou Information MySQL NVidia Shulou Technology Xiaomi Huawei Linux Shulou Tech Info vpn MariaDB Microsoft macOS Apple Redmi Docker OPPO Reno Shulou Information MySQL NVidia Shulou Technology Xiaomi

Share To

Related

IT Information

More IT Information >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report