#binarly — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #binarly, aggregated by home.social.
-
#DockerHub: Gefährliche #Backdoor in älteren #Linux-Images entdeckt
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered – Source: www.securityweek.com https://ciso2ciso.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered-source-www-securityweek-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #Malware&Threats #vulnerabilities #securityweekcom #securityweek #SouthKorea #Bootkitty #FEATURED #Binarly #Bootkit #eset #UEFI
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered https://www.securityweek.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered/ #Malware&Threats #Vulnerabilities #SouthKorea #Bootkitty #Binarly #bootkit #ESET #UEFI
-
Prototype UEFI Bootkit is South Korean University Project; LogoFAIL Exploit Discovered https://www.securityweek.com/prototype-uefi-bootkit-is-south-korean-university-project-logofail-exploit-discovered/ #Malware&Threats #Vulnerabilities #SouthKorea #Bootkitty #Binarly #bootkit #ESET #UEFI
-
Infosec products of the month: September 2024 https://www.helpnetsecurity.com/2024/10/01/infosec-products-of-the-month-september-2024/ #VeritasTechnologies #SkyhighSecurity #PromptSecurity #NudgeSecurity #Malwarebytes #WingSecurity #Bitdefender #Guardsquare #F5Networks #Strivacity #anecdotes #ArmorCode #Absolute #Huntress #Revenera #Binarly #Netgear #Tenable #Trellix #LOKKER #Rapid7 #Druva #Gcore #Ketch #Vanta #News
-
New infosec products of the week: September 6, 2024 https://www.helpnetsecurity.com/2024/09/06/new-infosec-products-of-the-week-september-6-2024/ #SkyhighSecurity #PromptSecurity #Bitdefender #Revenera #Binarly #Vanta #News
-
Binarly secured $10.5M in seed funding led by Two Bear Capital. Binarly specialises in AI-powered firmware and software supply chain security, identifying vulnerabilities and malicious code in devices to enhance security. #binarly #ai #supplychain #supply #supplier #funding #investment #security #code #vulnerabilities #shipment #transportation #logistics #transport #secure
-
Binarly secured $10.5M in seed funding led by Two Bear Capital. Binarly specialises in AI-powered firmware and software supply chain security, identifying vulnerabilities and malicious code in devices to enhance security. #binarly #ai #supplychain #supply #supplier #funding #investment #security #code #vulnerabilities #shipment #transportation #logistics #transport #secure
-
"🚨 UEFI Under Threat: The LogoFAIL Vulnerability 🚨"
A recent security report has brought attention to LogoFAIL, a collection of vulnerabilities that pose a substantial risk to devices utilizing UEFI firmware. These vulnerabilities enable attackers to install UEFI bootkits by leveraging weaknesses in the image-parsing components utilized by various vendors in their firmware. LogoFAIL's impact is widespread, affecting a broad range of devices across x86 and ARM architectures, including products from prominent manufacturers such as Intel, Acer, and Lenovo.
Researchers at Binarly have uncovered that malicious payloads can be executed by injecting image files into the EFI System Partition (ESP), effectively evading security features like Secure Boot. This method of attack ensures the persistence of malware on the system, rendering it virtually undetected. LogoFAIL's full scope of impact is still being assessed, but it is already evident that it poses a significant threat to both consumer and enterprise-grade devices, as it bypasses security mechanisms designed to protect UEFI systems.
Source: BlackHat talk and Bill Toulas, BleepingComputer
MITRE ATT&CK Reference for UEFI Vulnerabilities: T1588.006
Tags: #CyberSecurity #UEFI #Vulnerability #LogoFAIL #Bootkit #SecureBoot #FirmwareSecurity #Binarly #DeviceSecurity 🚨💻🔒