UEFI Secure Boot Bypass Bugs Uncov in 3 Microsoft Signed Boot Loaders

The Hacker News Daily Updates Cyber resilience in the era of identity sprawl. The following is a high-level, eight-step overview of identity sprawl. Download Now Sponsored LATEST NEWS Aug 13, 2022 Chinese Hackers Backdoored MiMi Chat App to Target Windows, Linux, macOS Users A pair of reports from cybersecurity firms SEKOIA and Trend Micro sheds light on a new campaign undertaken by a Chinese threat actor named Lucky Mouse that involves leveraging a trojanized version of a cross-platform messaging app to backdoor systems. Infection chains leverage a chat application ... Read More Researchers Uncover UEFI Secure Boot Bypass in 3 Microsoft Signed Boot Loaders A security feature bypass vulnerability has been uncovered in three signed third-party Unified Extensible Firmware Interface (UEFI) boot loaders that allow bypass of the UEFI Secure Boot feature. "These vulnerabilities can be exploited by mounting the EFI System Partition and replacing the ... Read More Xiaomi Phones with MediaTek Chips Found Vulnerable to Forged Payments Security flaws have been identified in Xiaomi Redmi Note 9T and Redmi Note 11 models, which could be exploited to disable the mobile payment mechanism and even forge transactions via a rogue Android app installed on the devices. Check Point said it found the flaws in devices powered by MediaTek ... Read More U.S. Government Offers $10 Million Reward for Information on Conti Ransomware Gang The U.S. State Department on Thursday announced a $10 million reward for information related to five individuals associated with the Conti ransomware group. The reward offer is also notable for the fact that it marks the first time the face of a Conti associate, known as "Target," has been ... Read More Facebook Testing Default End-to-End Encryption and Encrypted Backups in Messenger Social media company Meta said it will begin testing end-to-end encryption (E2EE) on its Messenger platform this week for select users as the default option, as the company continues to slowly add security layers to its various chat services. "If you're in the test group, some of your most ... Read More Combating Cyberattacks in 2022: Prepare to Defend Your Active Directory As seen in recent years, cyberattacks and the threat of ransomware continued to reach new heights in 2021. Not only that, but we also saw threat actors targeting critical U.S. infrastructure, like water treatment facilities, gas pipelines, and healthcare, as we’ve never seen before. It’s predicted that cybercrime costs the world $6 trillion annually. So, what will we see in 2022 and how can you defend your organization? Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India