Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11UEFI CosmicStrand Malware Found in ASUS and Gigabyte Firmware
The security threat research team at antivirus software maker Kaspersky has discovered a rootkit malware called CosmicStrand. In fact, this is not a new malware but a variant of the Spy Shadow trojan that appeared in 2016 - 2017.
CosmicStrand is a UEFI rootkit malware and it was found in ASUS and Gigabyte firmware. That's why it's called an Advanced Persistent Threat (APT) because it's so hard to remove. No matter how many times you reinstall Windows, you can't remove this type of UEFI rootkit.
Regarding operating systems, Kaspersky found that so far only Windows operating systems have been attacked and penetrated.
"All the attacked computers were running Windows. Every time the computer rebooted, the malicious code would be executed after Windows finished booting. Its purpose was to connect to the C2 server and download additional malicious files ," Kaspersky shared.
While Kaspersky has identified the malware, it does not know how it was initially transmitted. Some users have reported that second-hand motherboards they ordered online were infected when they received them.
For those using Gigabyte and ASUS motherboards running Windows, enabling Secure Boot is a viable option to protect against any malicious effects. Of course, if you have some computer knowledge, you can reset your BIOS. However, remember to download the official firmware from the manufacturer's website.
So far, CosmicStrand's victims have been primarily consumers in China, Vietnam, Iran and Russia.
Lesley MontoyaYou should read it
- 'Rootkit + Trojan = Increased danger'
- Hidden patterns of malware
- 10 typical malware types
- Microsoft is about to add a useful security feature to Windows 10 to help detect software attacks early
- What is Safe Malware? Why is it so dangerous?
- Can a VPN Fight Malware?
- What is Malware? What kind of attack is Malware?
- The 4 most common ways to spread malware today
May be interested
- How to delete last camera access history on Windows 11
if an app has accessed your camera, it will show you the last time it accessed it. here's how to find out when it last accessed your camera on windows 11. - Nvidia will support Toyota in developing self-driving carsnvidia has had a banner year, but it seems the company's ambitions extend beyond its traditional businesses.
- The best female villains in animecompelling, complex, and terrifying, these women command the room with their presence. from mafia bosses to deadly assassins, here are some of the best female villains in anime.
- Will Apple integrate high blood pressure monitoring feature on Apple Watch by 2025?apple watch is no longer just a smart wearable device and a stylish piece of technology.
- 13 Best Google Home Gamestry any of these interactive google home games to test your knowledge and provide some fun for your family and friends.
- 14 Best Free Apple Watch Faceslike ios devices, you can change the apple watch home screen in a variety of ways. here are some of the most impressive watch faces on apple watch
Tech info
5 ways to fix lost UEFI Firmware Settings menu error in Windows 10- UEFI firmware from Microsoft, Intel, HP, Dell etc., can be at risk from nearly 20 different vulnerabilities
- Detected a security flaw in Lenovo's UEFI firmware, affecting 100 laptop models
- Things to note when using UEFI instead of BIOS
- How to check and access UEFI settings on Windows 10
5 ways to fix lost UEFI Firmware Settings menu error in Windows 10
UEFI firmware from Microsoft, Intel, HP, Dell etc., can be at risk from nearly 20 different vulnerabilities
Detected a security flaw in Lenovo's UEFI firmware, affecting 100 laptop models
Things to note when using UEFI instead of BIOS
How to check and access UEFI settings on Windows 10