A supply chain failure compromising Secure Boot protections across numerous computing devices impacts more models than initially thought, including ATMs, POS terminals, and voting machines. The issue, now dubbed PKfail, arose from non-production test platform keys used for over a decade by manufacturers like Acer, Dell and HP. The number of affected machines is now thought to stand at 972, almost double the previous estimate of 513. Cryptographic rootkits that undermine system security could potentially be planted in devices affected.
New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth
An updated version of a malware loader, known as Hijack Loader, has been discovered with new features aimed at evading detection and maintaining persistence. The
