This article has been indexed from Securelist
At the end of 2021, we inspected UEFI firmware that was tampered with to embed a malicious code we dub MoonBounce. In this report we describe how the MoonBounce implant works and how it is connected to APT41.
Read the original article: MoonBounce: the dark side of UEFI firmware