This UEFI based malware is the second of its kind ever known publicly.
Computers are made up of multiple components – both software and hardware, each with its own complexity. One such component happens to be the Unified Extensible Firmware Interface (UEFI) which is the software that is installed on a computer’s motherboard.
This naturally grants it access to the entire system as by default and starts running at the very start when a computer is turned on. However, being so important, it is also equally difficult for it to be infected by malware.
Despite this, a recent report by Kaspersky suggests that a UEFI based malware has been found – the second of its kind ever known publicly.
See: Most sophisticated malware targeting diplomats, iPhones, android, PC.
According to the researchers, the malware is in the form of a “compromised UEFI firmware image” with an implant that installs additional malware on the victim devices.
Found using Firmware Scanner; a product from Kaspersky, the malware has been linked to a larger framework that has been named MosaicRegressor. Its targets included diplomats and NGO members across 3 continents: namely Africa, Asia, and Europe from 2017 to 2019.
The researchers believed that the perpetrators behind the malware campaign are linked to the Democratic Republic of North Korea (DPRK). But on the other hand, some parts of the malware also point to the possibility that a Chinese attac ..
Support the originator by clicking the read the rest link below.
