Skip to main content

Here's what a VPN can't protect you from (but you need to use it)

By Administrator
The abbreviation " VPN " has slowly become established among average Internet users, which is certainly good, but the problem is that people have started to see VPN as the ultimate solution to all problems.
Post a Comment

Russian hackers use malware that can survive a system reinstall

By Administrator
Russian hackers use malware that can survive a system reinstall

According to ESET, Russian hackers use malware that can survive on a Windows computer even after a complete reinstallation of the system.

The company discovered malware called "Lojax" that comes from a hacker group known as "Fancy Bear". Malware crawls security shields (such as antivirus software) by mimicking the behavior of the LoJack tool. This tool protects your computer from theft, which means that it is definitely difficult to remove from your computer.

Since this software is intended to protect the system from thieves, it is important that it be resistant to removal when reinstalling the system or replacing the hard drive. That is why it is implemented in the UEFI / BIOS chip itself

- states ESET.

Fancy Bears "armed" LoJack and created malware that can go through protection in the computer. ESET states that many manufacturers of computer security tools let LoJack work because it is designed to protect against theft and requires all possible system permissions.

When Lojax infects a UEFI module, it can remain there after replacing the HDD. The only way to remove it is to flash UEFI firmware, which many users do not know how to do.

ESET said Lojax was the first UEFI Rootkit to be seen in real use. So far, security experts have only talked about possible UEFI Rootkits, although no one has ever used them.

Russian hackers use malware that can survive a system reinstall

The company did not want to reveal the owner of the computer on which they discovered the malware. However, they warned that the Fancy Bear group used various components of Lojax to infect the systems of government organizations in the Balkans and some other Central and Eastern European countries.

However, the good news for all users is that the computer can be protected from Lojax by simply turning on the "Secure Boot" option. This option verifies that all computer components, including firmware, are authentic with a digital certificate issued by the manufacturer. Lojax just doesn’t pass this test. The Secure Boot option is enabled by default for Windows 10 systems, and if someone does not, it can be manually enabled in the BIOS options.

Labels:

Comments

Post a Comment

Popular this month

[Google+] File sharing

By Administrator
The Google+ network brings with it a lot of new options and features that, as I noticed, users like. One of these new features is file sharing between users. Sharing takes place via chat and requires the approval of the file recipient.
Post a Comment
Read more

SIM card sizes (Mini, Micro, Nano) - explanation

By Administrator
Many users still complain about the size of SIM (subscriber identification module) cards. Which one goes on the phone? Can it be shortened? Can a smaller one into a larger slot? Although we are slowly switching to eSIM (more on this in this article ), we still use classic SIM cards. Newer phones usually require a Nano sizes, but operators issue SIM cards in all sizes. More precisely, now SIM cards are made so that the user can choose the size immediately, and later change it if necessary. More on that at the end of the article.
Post a Comment
Read more

What should you check before buying a used phone?

By Administrator
If you buy a used phone from an unknown person, or even from a known person, you must always check the phone for any damage - visible or hidden. But what all needs to be checked? How? That is exactly what I am writing in this article!
Post a Comment
Read more

Google offline maps - instructions

By Administrator
Google has recently added several new features to its maps, including Offline maps and turn-by-turn navigation. It was these two options that were missing so that Google Maps  that could be used as a standalone offline navigation app.
Post a Comment
Read more

The difference between Sleep, Hibernate and Hybrid sleep options

By Administrator
What is the difference between regular Sleep mode and Hybrid sleep mode? And what is Hibernate ? I will try to explain in the simplest way possible so that everyone understands nicely. 1. Sleep When you select Sleep mode , all components of the computer except RAM are shut down to store data. So, if you do something on the computer and press Sleep, the computer shuts down and everything you did (left open windows, documents, etc.) is stored in RAM.
Post a Comment
Read more