An industry-wide standard that safeguards Windows devices from firmware infections had a vulnerability for around seven months which may have allowed the bypassing of protection with a simple technique. Patched by Microsoft on Tuesday, the status of Linux systems remains unknown. The exploit permitted attackers with device access to run harmful firmware during bootup, thus infecting the device before any OS loading.
Threat Actors Exploit LANSCOPE Endpoint Manager Zero-Day Vulnerability to Steal Confidential Data
In mid-2025, researchers discovered a sophisticated campaign orchestrated by the Chinese state-sponsored threat group BRONZE BUTLER (also known as Tick) targeting organizations relying on Motex
