Network Security Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation Quarkslab finds serious, remotely exploitable vulnerabilities in EDK II, the de-facto open source reference implementation of the UEFI spec. Ryan NaraineJanuary 16, 2024
Endpoint Security Enterprise, Consumer Devices Exposed to Attacks via Malicious UEFI Logo Images LogoFAIL is an UEFI image parser attack allowing hackers to compromise consumer and enterprise devices using malicious logo images. Eduard KovacsDecember 6, 2023
Malware & Threats NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections The National Security Agency (NSA) has released mitigation guidance to help organizations stave off BlackLotus UEFI bootkit infections. Ionut ArghireJune 23, 2023