First UEFI bootkit malware for Linux discovered

SUMMARY :

A groundbreaking discovery has been made in the realm of cybersecurity: the first UEFI bootkit specifically targeting Linux systems. Named 'Bootkitty,' this proof-of-concept malware marks a significant evolution in stealthy and hard-to-remove bootkit threats. Although currently limited to certain Ubuntu versions and configurations, its existence raises concerns about potential future developments. Bootkitty bypasses kernel signature verification, preloads malicious components during system boot, and manipulates various security protocols. While not yet observed in real-world attacks, this discovery highlights the growing threat landscape for Linux systems and underscores the need for enhanced security measures in enterprise environments adopting Linux.

OPENCTI LABELS :

malware,linux,cybersecurity,uefi,kernel,bootkitty,bcdropper,ubuntu,proof-of-concept,bcobserver,bootkit


Open in NetmanageIT OpenCTI Public Instance with below link!


Use public read only username and password on login page.

NOTE : Use Public READ only user credentials on login page banner.


First UEFI bootkit malware for Linux discovered