all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

LogoFAIL Bootup Flaw Puts Hundreds of Devices at Risk

Add to bookmarks
Dec. 4, 2023, 7:16 p.m. |

BankInfoSecurity.com RSS Syndication www.bankinfosecurity.com

UEFI Feature Flashing Corporate Logo Can Enable Malware Deployment
Hackers could use a firmware specification designed to flash a corporate logo during computer bootup to deliver a malicious payload that circumvents the industry standard for only loading trusted operating systems. The flaw stems from graphic image parsers embedded into system firmware.

computer corporate devices embedded enable feature firmware flash flaw image industry logo logofail malicious malware operating systems parsers payload risk standard system systems uefi

Visit resource

More from www.bankinfosecurity.com / BankInfoSecurity.com RSS Syndication

Dropbox Sees Breach of Legally Binding E-Signature Service 2 hours ago | www.bankinfosecurity.com
api authentication breach breached +22
US and Allies Issue Cyber Alert on Threats to OT Systems 13 hours ago | www.bankinfosecurity.com
alert allies america attacks +26
Verizon DBIR: Cyber Defenders Are Facing Exploit Fatigue 14 hours ago | www.bankinfosecurity.com
critical critical vulnerabilities cyber cyberattacks +17
Corelight Gets $150M to Expand Detection, Improve Workflows 14 hours ago | www.bankinfosecurity.com
and response capabilities corelight detection +19
Lawmakers Grill UnitedHealth CEO on Change Healthcare Attack 15 hours ago | www.bankinfosecurity.com
attack ceo change change healthcare +17
GitLab Hackers Use 'Forgot Your Password' to Hijack Accounts 15 hours ago | www.bankinfosecurity.com
accounts agency attacker cisa +19
Correlating Cyber Investments With Business Outcomes 21 hours ago | www.bankinfosecurity.com
business ceo cisos cyber +13
Qantas Airways Says App Showed Customers Each Other's Data 23 hours ago | www.bankinfosecurity.com
airline airways app breach +11
Verizon Breach Report: Vulnerability Hacks Tripled in 2023 1 day, 7 hours ago | www.bankinfosecurity.com
alex author breach data +23

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

@ SAP | Dublin 24, IE, D24WA02
View on infosec-jobs.com

Product Security Response Engineer

@ Intel | CRI - Belen, Heredia
View on infosec-jobs.com

Application Security Architect

@ Uni Systems | Brussels, Brussels, Belgium
View on infosec-jobs.com

Sr Product Security Engineer

@ ServiceNow | Hyderabad, India
View on infosec-jobs.com

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)

@ FiscalNote | United Kingdom (UK)
View on infosec-jobs.com
View more jobs