Connect with us

Hi, what are you looking for?


Black Hat

Security Analyst Claims to Defeat Windows 8 Secure Boot With Bootkit

Austrian programmer and security analyst Peter Kleisnner is slated to unveil the first known bootkit for Windows 8 at the upcoming MalCon security conference in Mumbai.

Austrian programmer and security analyst Peter Kleisnner is slated to unveil the first known bootkit for Windows 8 at the upcoming MalCon security conference in Mumbai.

A bootkit is a kernel-mode rootkit that infects the master boot record (MBR), making it difficult for many security programs to detect. In their August Intelligence Report, researchers at Symantec said they had already been as many new boot time malware threats detected in the first seven months of 2011 as they were in the past three years.

Peter Kleissner Austria

While much of the details of the bootkit – known as Stoned Lite – are under wraps, Kleissner noted on Twitter that the infector file is 14 KB in size and the bootkit can be started from a USB drive or CD.

“Might add in-memory patching of msv1_0!MsvpPasswordValidate, so it allows to log on with any password.. nothing new but nice and fancy,” he tweeted.

The malware does not attack UEFI or secure boot, he added. It only targets the legacy BIOS.

The researcher also tweeted that he had informed Microsoft of his research. His talk however remains somewhat in doubt, as MalCon organizers noted in an announcement that the researcher has yet to have his VISA application approved.

More information on the conference can be found here.

Advertisement. Scroll to continue reading.

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Artificial Intelligence

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Black Hat

Black Hat 2019 recently wrapped in Las Vegas, where somewhere between 15,000 and 20,000 experts descended to experience the latest developments in the world...