UEFI rootkit LoJax
-
Anyone heard anything on this yet?
-
I haven't but it also sounds as though you need physical access to the system to compromise it.
Seems like an easy one to avoid.
-
@DustinB3403 said in UEFI rootkit LoJax:
I haven't but it also sounds as though you need physical access to the system to compromise it.
Seems like an easy one to avoid.
no - only need the user who runs it to be running as local admin.
-
But like anything - this could grow through the use of other compromises for privilege elevation, and bam - pown'ed.