all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

LogoFAIL bugs in UEFI code allow planting bootkits via images

Add to bookmarks
Dec. 1, 2023, 3:08 a.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

Multiple security vulnerabilities collectively named LogoFAIL affect image-parsing components in the UEFI code from various vendors. Researchers warn that they could be exploited to hijack the execution flow of the booting process and to deliver bootkits. [...]

bugs code components exploited flow hijack image images parsing process researchers security uefi vendors vulnerabilities

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Android bug can leak DNS traffic with VPN kill switch enabled 16 hours ago | www.bleepingcomputer.com
android android devices block bug +15
NSA warns of North Korean hackers exploiting weak DMARC email policies 18 hours ago | www.bleepingcomputer.com
apt43 attacks authentication dmarc +19
Google rolls back reCaptcha update to fix Firefox issues 20 hours ago | www.bleepingcomputer.com
back bug captcha firefox +11
NATO and EU condemn Russia's cyberattacks against Germany, Czechia 21 hours ago | www.bleepingcomputer.com
apt28 campaign countries cyber +14
Microsoft rolls out passkey auth for personal Microsoft accounts 22 hours ago | www.bleepingcomputer.com
accounts auth authenticate biometric +20
CEO who sold fake Cisco devices to US military gets 6 years in prison 1 day, 15 hours ago | www.bleepingcomputer.com
ceo cisco companies counterfeit +14
Bitwarden launches new MFA Authenticator app for iOS, Android 1 day, 17 hours ago | www.bleepingcomputer.com
android android devices app authenticator +12
CISA urges software devs to weed out path traversal vulnerabilities 1 day, 17 hours ago | www.bleepingcomputer.com
cisa companies fbi path +9
Police shuts down 12 fraud call centres, arrests 21 suspects 1 day, 18 hours ago | www.bleepingcomputer.com
albania arrests bosnia bosnia and herzegovina +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

QA Customer Response Engineer

@ ORBCOMM | Sterling, VA Office, Sterling, VA, US
View on infosec-jobs.com

Enterprise Security Architect

@ Booz Allen Hamilton | USA, TX, San Antonio (3133 General Hudnell Dr) Client Site
View on infosec-jobs.com

DoD SkillBridge - Systems Security Engineer (Active Duty Military Only)

@ Sierra Nevada Corporation | Dayton, OH - OH OD1
View on infosec-jobs.com

Senior Development Security Analyst (REMOTE)

@ Oracle | United States
View on infosec-jobs.com

Software Engineer - Network Security

@ Cloudflare, Inc. | Remote
View on infosec-jobs.com

Software Engineer, Cryptography Services

@ Robinhood | Toronto, ON
View on infosec-jobs.com
View more jobs