LogoFAIL: New Firmware Attack Exploits UEFI Vulnerabilities on Windows and Linux Devices

December 6, 2023 at 03:02 PM

•

1 min read

LogoFAIL: New Firmware Attack Exploits UEFI Vulnerabilities on Windows and Linux Devices — Photo: Ars Technica

TL;DR Summary

A new firmware attack called LogoFAIL has been discovered, affecting hundreds of Windows and Linux computer models from various hardware makers. The attack exploits vulnerabilities in Unified Extensible Firmware Interfaces (UEFIs) responsible for booting devices, allowing for the execution of malicious firmware early in the boot-up sequence. LogoFAIL can be remotely executed and bypasses traditional endpoint security products, including Secure Boot. The vulnerabilities have been disclosed by multiple companies, and security patches are being released. The attack gives threat actors control over the memory and disk of the target device, compromising platform security.

Topics:technology #cybersecurity #firmware-attack #linux #logofail #vulnerability #windows

Share this article

Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack Ars Technica
LogoFAIL: UEFI Vulnerabilities Expose Devices to Stealth Malware Attacks The Hacker News

Reading Insights

Total Reads

Unique Readers

Time Saved

3 min

vs 4 min read

Condensed

86%

671 → 93 words

Want the full story? Read the original article

Read on Ars Technica

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights