Guidance for investigating attacks using CVE-2022-21894: The BlackLotus campaign

2023-04-11 18:04

This guide provides steps that organizations can take to assess whether users have been targeted or compromised by threat actors exploiting CVE-2022-21894 via a Unified Extensible Firmware Interface (UEFI) bootkit called BlackLotus.

The post Guidance for investigating attacks using CVE-2022-21894: The BlackLotus campaign appeared first on Microsoft Security Blog.

This article has been indexed from Microsoft Security Blog

Read the original article:

Guidance for investigating attacks using CVE-2022-21894: The BlackLotus campaign

Liked it? Take a second to support IT Security News on Patreon!

← Strategy Reporting Essentials: A Guide to Efficient Data Collection

Announcing the deps.dev API: critical dependency data for secure supply chains →


10.4K	8K	100+	500+

Read the original article:

Related

Post navigation