If you're running @ESET you can mitigate against CVE-2023-23397 by configuring your trusted zone and enabling "Deny NTLM authentication in SMB protocol for connecting a server outside the Trusted zone":
https://t.co/w5r2fDiqR6
Also check out the other settings while you're there, some are pretty neat.
#ESETResearch analyze first in-the-wild UEFI bootkit bypassing UEFI Secure Boot even on fully updated Windows 11 systems. Its functionality indicates it is the #BlackLotus UEFI bootkit, for sale on hacking forums since at least Oct 6, 2022. @smolar_m https://t.co/mXSXksRisG 1/11
📢 Mark your calendars! EEML2023 will be held in Slovakia, 9-16 July 2023, in partnership with @ESET ! Lectures and practical sessions by top ML experts, industry keynotes, poster sessions, and more! Applications open in January! Stay tuned! 🇸🇰🎉
#ESETResearch discovered and reported to the manufacturer 3 vulnerabilities in the #UEFI firmware of several Lenovo Notebooks. The vulnerabilities allow disabling UEFI Secure Boot or restoring factory default Secure Boot databases (incl. dbx): all simply from an OS. @smolar_m 1/9
#ESETresearch discovered inconspicuous Linux samples written in C++ which serve as configurable modular backdoors. They are referred to as StageClient throughout the code @HrckaVladislav 1/8
Android stalkerware vulnerabilities
After months of research I can now share results of manually identifying 158 security and privacy issues discovered in 58 apps.
To this day, only six vendors have fixed the issues.
https://t.co/Bk5ce1IMdi #eset
#ESETresearch uncovered malware we named #KryptoCibule; #crimeware targeting users in Czechia and Slovakia. It uses clipboard hijacking and cryptomining, and steals cryptocurrency-related and sensitive files over SFTP to maximize profit from victims. https://t.co/kGXywx39dk 1/5
#ESETresearch identified multiple malicious EFI bootloader samples. The malware displays a ransom message and prevents the computer from booting. It can compromise computers with disabled #UEFI Secure Boot feature @cherepanov74@smolar_m 1/4