Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11The malware detection is extremely dangerous, unable to destroy even if the operating system is reinstalled and the hard drive is replaced
An extremely dangerous malware called Lojax has just been discovered by ESET security firm. This malware is infecting a victim computer with malicious code. According to security experts at ESET, it is likely that Lojax was created by a famous hacker group from Russia called Fancy Bea.
These dangerous malware target UEFI software - the Unified Extensible Firmware Interface, which is used to boot the computer's system. Lojax rewrites UEFI so they can survive long in the flash memory of the computer, even when reinstalling the operating system and replacing the hard drive can not be destroyed.
ESET said, if you want to remove this malware, users will have to overwrite the memory of the flash storage drive, and this is definitely not for general users.
Security researchers have discovered the various components of the Lojax malware on computers belonging to government organizations in countries in Central and Eastern Europe and the Balkan region.
According to ESET, previously the type of rootkit attack targeting UEFI is only considered a form of attack in theory. And this is the first time this UEFI rootkit has appeared in the real world.
Fancy Bea hacker group is also known as Sednit because it has carried out a series of attacks on government groups. Including the leak of information in the National Democratic Committee's computer network in the 2016 US presidential campaign.
ESET said that Lojax's method of mimicking an anti-theft system protection product is also difficult to remove from a PC called Lojack. The hacker group has weaponized Lojack to help them attack computers and overcome security software.
Now, security experts still do not know how Fancy Bear put the malware on a victim's computer. But maybe Lojax is used to download other malware modules into infected computers.
Maybe Fancy Bear has developed parts of Lojax based on commands and control servers communicating with malware. Previously, domain names for these servers were also used to store other hacking tools developed by Fancy Bear.
Fortunately, this Lojax attack can be completely blocked through a standard feature that is usually enabled by the PC, called Secure Boot. All parts in the PC, including the firmware, will be Secure Boot checked to see if they are validated with a valid code signed by the manufacturer. This test can block Lojax Malware.
To enable or disable this feature, you can restart the computer and access the BIOS section.
In addition, security experts at ESET also advise PC users to constantly update the firmware for the motherboard of the device to prevent hackers from exploiting the vulnerabilities.
See more:
- 5 things to do to avoid malware
- Researchers create malware based on artificial intelligence
- Warning, the botnet campaign called GhostDNS is taking over more than 100000 routers
Marvin FryYou should read it
- What is Safe Malware? Why is it so dangerous?
- Can a VPN Fight Malware?
- What is Malware? What kind of attack is Malware?
- The 4 most common ways to spread malware today
- Learn about polymorphic malware and super polymorphism
- What is Goldoson Malware? How can you protect yourself?
- What is rooting malware? What can you do to protect yourself?
- Some simple tricks to deal with Malware
May be interested
- How to identify hard drive failure, hard drive failure, bad hard drive on Windows
how to know the hard drive is corrupted, the hard drive is bad, bad? if your computer has the following signs, the chances are great that it already has a problem, be prepared to take it to repair or replace the new hard drive. - How to Boot Your Computer from an External Hard Drivetoday's tipsmake will show you how to set up your computer to boot from an external drive instead of the built-in hard drive. this is useful when you need to run another operating system (such as linux) or install something that requires the internal hard drive to be offline.
- Extremely dangerous commands on Windows, Linux, Mac, don't try even oncethere are commands that are used to provide certain features to the operating system. however, if used improperly, they cause danger and damage the operating system.
- How to Format a Hard Drivethis wikihow teaches you how to format your computer's built-in hard drive. you cannot format the whole hard drive—doing so would erase your operating system—but you can format a portion of the hard drive after creating a partition. you can...
- Instructions for dividing hard drives right in Windows 10is your c drive capacity too large? want to split hard drive capacity into many different small drives? shrink volume is one of microsoft's great, very handy features that equips the operating system since windows vista until now, making it easier for users to manage and split the drive capacity as desired. please read the article below for reference steps!
- 8 effective ways to check your hard drive to periodically check the health of your hard drivethe following ways will help you check the hard drive and evaluate the current operating status of the hard drive on the computer you are using. from there, detect instabilities early to take timely measures to avoid hard drive failure and data loss.
- How to enable hard drive compression on Windows operating systeminstructions on how to use the hard drive compression feature on windows operating systems to save hard drive space. enable disk compression on windows computers
- Install Win 7 from your hard drive, no need for USB, install Win diskinstalling win 7 from your hard drive is a way to install the operating system directly on your hard drive without a usb drive or a win drive. useful when you do not know how to create a usb drive to install win or drive failure, usb connection port.
- Hard drive and data protection skills - Part IIyour computer's hard drive is lost or infected, making the windows operating system unable to boot. so do you have any tools that can help you get your data back quickly or help you speed up your hard drive?
- Dissection of hard drive componentsa hard drive (commonly referred to as hard disk, hard drive, or hdd) is a non-volatile storage device that stores digital data encoded on hard disk (platter) disks quick rotation on the magnetic surface.
Technology story
- More than 64 million devices will be killed by Chrome
- Americans are banned from using password 1234 to ensure safety
- Mozilla released Firefox 62.0.2 to fix the problem of corrupting the operating system
- With Chrome 70, users will be allowed to deny web links, log in to the browser
- Top 10 smartphones with the slimmest screen today
- The time-limited feature on Apple's iOS 12 is hacked by a 7-year-old child
More than 64 million devices will be killed by Chrome
Americans are banned from using password 1234 to ensure safety
Mozilla released Firefox 62.0.2 to fix the problem of corrupting the operating system
With Chrome 70, users will be allowed to deny web links, log in to the browser
Top 10 smartphones with the slimmest screen today
The time-limited feature on Apple's iOS 12 is hacked by a 7-year-old child