Skip to main content

Here's what a VPN can't protect you from (but you need to use it)

By Administrator
The abbreviation " VPN " has slowly become established among average Internet users, which is certainly good, but the problem is that people have started to see VPN as the ultimate solution to all problems.
Post a Comment

Russian hackers use malware that can survive a system reinstall

By Administrator
Russian hackers use malware that can survive a system reinstall

According to ESET, Russian hackers use malware that can survive on a Windows computer even after a complete reinstallation of the system.

The company discovered malware called "Lojax" that comes from a hacker group known as "Fancy Bear". Malware crawls security shields (such as antivirus software) by mimicking the behavior of the LoJack tool. This tool protects your computer from theft, which means that it is definitely difficult to remove from your computer.

Since this software is intended to protect the system from thieves, it is important that it be resistant to removal when reinstalling the system or replacing the hard drive. That is why it is implemented in the UEFI / BIOS chip itself

- states ESET.

Fancy Bears "armed" LoJack and created malware that can go through protection in the computer. ESET states that many manufacturers of computer security tools let LoJack work because it is designed to protect against theft and requires all possible system permissions.

When Lojax infects a UEFI module, it can remain there after replacing the HDD. The only way to remove it is to flash UEFI firmware, which many users do not know how to do.

ESET said Lojax was the first UEFI Rootkit to be seen in real use. So far, security experts have only talked about possible UEFI Rootkits, although no one has ever used them.

Russian hackers use malware that can survive a system reinstall

The company did not want to reveal the owner of the computer on which they discovered the malware. However, they warned that the Fancy Bear group used various components of Lojax to infect the systems of government organizations in the Balkans and some other Central and Eastern European countries.

However, the good news for all users is that the computer can be protected from Lojax by simply turning on the "Secure Boot" option. This option verifies that all computer components, including firmware, are authentic with a digital certificate issued by the manufacturer. Lojax just doesn’t pass this test. The Secure Boot option is enabled by default for Windows 10 systems, and if someone does not, it can be manually enabled in the BIOS options.

Labels:

Comments

Post a Comment

Popular this month

The Galaxy Note was ridiculed when it appeared, and now…

By Administrator
Did you know that the first Samsung Galaxy Note was ridiculed by users and the media? Everyone laughed at his "huge" case and said that it would fall apart immediately after it appeared. They said that it was too big and that such a phone would never be used every day.
Post a Comment
Read more

What is GLONASS?

By Administrator
If you've looked at the detailed specification of an Android or GPS device, you may have seen another term next to the GPS tag and didn't know exactly what it represents. Well,  GLONASS is a global navigation system that was started by the USSR in 1976, so this project could be taken over by Russia after the collapse of the Soviet Union.
Post a Comment
Read more

Free coding learning sites

By Administrator
Learning to code is something that every person turned to technology should try at least once. The wealth of online courses, where most are free or cheap, makes learning coding easier than ever.
Post a Comment
Read more

Xiaomi introduces the Redmi Note 9T and Redmi 9T

By Administrator
Redmi Note 9T and Redmi 9T move the established segments of lower and middle-class smartphones with exceptional performance and multi-day battery life Global technology leader Xiaomi today unveiled two new Redmi smartphones: the Redmi Note 9T and the Redmi 9T . The first-ever 5G smartphone in the Redmi Note series.
Post a Comment
Read more

X96 Mini Android TV Box Review

By Administrator
I have already written an article about buying an Android TV Box for up to 30 euros, and now I am writing about one such device - the X96 Mini TV Box . There is not much to say about this device, its price is around 25 euros, it is an Android TV Box like any other, which means that it is powered by an Android system. Since I wrote about it in the previous article, I will not repeat myself. These cheaper TV Box devices differ mainly only in the chip, amount of RAM, and ROM memory. In the previous article, I wrote about what to pay attention to when choosing, and I chose this device that way.
Post a Comment
Read more