Flawed UK Conservative Party Conference App Allows Public Login As Ministers, Sednit APT Group Delivers UEFI Rootkit In The Wild
The Sednit APT group, also known as Fancy Bear and Sofacy, has successfully deployed a Unified Extensible Firmware Interface (UEFI) rootkit dubbed LoJax against government entities in the Balkans, Central and Eastern Europe – by writing a malicious UEFI module into a system’s SPI flash memory. The module can drop and execute malware on disk during the boot process and survive an operating system reinstallation and hard disk replacement.
 FINE MESS Tory party faces huge £2m data breach fine after app glitch exposes senior MPs’ contact details and even replaces profile pics with PORN
 LoJax: First UEFI rootkit found in the wild, courtesy of the Sednit group
More Weekly Cyber Newsanalysis and insights
Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.
Architecting and implementing cybersecurity solutions that bolster defences
Ensign Managed Security Services
Managing your security operations for advanced threat detection, continuous monitoring, and triage services