all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

NSA Releases Guide to Combat BlackLotus Malware

Add to bookmarks
June 23, 2023, 5:19 p.m. | Guru Baran

GBHackers On Security gbhackers.com

Malicious cyber actors might exploit a known flaw in Microsoft Windows’ secure startup process to bypass Secure Boot protection and run the BlackLotus malware. BlackLotus uses a known flaw dubbed “Baton Drop,” tracked as CVE-2022-21894, to bypass beyond security precautions made by the device’s Secure Boot start-up procedure.  Since October 2022, BlackLotus has been making appearances on hacker forums. […]


The post NSA Releases Guide to Combat BlackLotus Malware appeared first on GBHackers - Latest Cyber Security News | Hacker …

beyond blacklotus boot bypass cve cve-2022-21894 cyber cyber-attack device exploit flaw guide malicious malware microsoft microsoft windows nsa october procedure process protection ransomware releases run secure boot security start start-up startup windows

Visit resource

More from gbhackers.com / GBHackers On Security

NETGEAR buffer Overflow Vulnerability Let Attackers Bypass Authentication 23 hours ago | gbhackers.com
1.0.6 address attacker attackers +30
5000+ CrushFTP Servers Hacked Using Zero-Day Exploit 1 day ago | gbhackers.com
access attacks can crushftp +30
13,142,840 DDoS Attacks Targeted Organization Around The Globe 1 day, 1 hour ago | gbhackers.com
attacks block can crash +16
Hackers Exploit Old Microsoft Office 0-day to Deliver Cobalt Strike 1 day, 2 hours ago | gbhackers.com
attack beacon cobalt cobalt strike +17
Microsoft Publicly Releases MS-DOS 4.0 Source Code 1 day, 4 hours ago | gbhackers.com
code computing cyber-attack cyber security +16
New SSLoad Malware Combined With Tools Hijacking Entire Network Domain 1 day, 5 hours ago | gbhackers.com
addition attack campaign cobalt +24
Palo Alto Networks Shares Remediation Advice for Hacked Firewalls 1 day, 5 hours ago | gbhackers.com
access advice alto breach +26
Analyze Malicious Powershell Scripts by Running Malware in ANY.RUN Sandbox 1 day, 19 hours ago | gbhackers.com
access antivirus any.run attackers +32
Beware! Zero-click RCE Exploit for iMessage Circulating on Hacker Forums 1 day, 22 hours ago | gbhackers.com
apple click code code execution +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Director, Cybersecurity - Governance, Risk and Compliance (GRC)

@ Stanley Black & Decker | New Britain CT USA - 1000 Stanley Dr
View on infosec-jobs.com

Information Security Risk Metrics Lead

@ Live Nation Entertainment | Work At Home-Connecticut
View on infosec-jobs.com

IT Product Owner - Enterprise DevSec Platform (d/f/m)

@ Airbus | Hamburg - Finkenwerder
View on infosec-jobs.com

Senior Information Security Specialist

@ Arthur Grand Technologies Inc | Arlington, VA, United States
View on infosec-jobs.com

Information Security Controls SME

@ Sword | Aberdeen, Scotland, United Kingdom
View on infosec-jobs.com
View more jobs