Windows – ESET Ireland

ESET Research discovers UEFI Secure Boot bypass vulnerability

January 16, 2025

ESET researchers have discovered a vulnerability, affecting the majority of UEFI-based systems, that allows actors to bypass UEFI Secure Boot. This vulnerability, assigned CVE-2024-7344, was found in a UEFI application signed by Microsoft’s “Microsoft Corporation UEFI CA 2011” third-party UEFI certificate. Exploitation of this vulnerability can lead to the execution of untrusted code during system … More ESET Research discovers UEFI Secure Boot bypass vulnerability

Crypto is soaring, but so are threats: Here’s how to keep your wallet safe

January 9, 2025

As detections of cryptostealers surge across Windows, Android and macOS, it’s time for a refresher on how to keep your bitcoin or other crypto safe. Bitcoin is on a tear. For the first time in its history, the digital currency surpassed $100,000 in early December, having surged more than 30% since election night in the US. Whether … More Crypto is soaring, but so are threats: Here’s how to keep your wallet safe

ESET Research discovers Mozilla and Windows zero day & zero click vulnerabilities exploited by RomCom APT group

November 26, 2024

ESET Research details the analysis of a previously unknown vulnerability in Mozilla products exploited in the wild and another previously unknown Microsoft Windows vulnerability, combined in a zero-click exploit. ESET researchers discovered a previously unknown vulnerability, CVE-2024-9680, in Mozilla products, exploited in the wild by APT group RomCom. Further analysis revealed another zero-day vulnerability in … More ESET Research discovers Mozilla and Windows zero day & zero click vulnerabilities exploited by RomCom APT group

Why system resilience should mainly be the job of the OS, not just third-party applications

October 3, 2024

Building efficient recovery options will drive ecosystem resilience. Last week, a US congressional hearing regarding the CrowdStrike incident in July saw one of the company’s executives answer questions from policy makers. One point that caught my interest during the ensuing debate was the suggestion that future incidents of this magnitude could be avoided by some form of automated system … More Why system resilience should mainly be the job of the OS, not just third-party applications

Hackers Force Chrome Users To Hand Over Google Passwords

September 16, 2024

New research has uncovered a new technique used by hackers to force Chrome users to reveal their Google account passwords, writes Forbes*. The malware, called StealC, locks the browser in kiosk mode, blocking the F11 and ESC keys to prevent users from exiting. The only thing displayed is a Google account login window, compelling users … More Hackers Force Chrome Users To Hand Over Google Passwords

ESET Ireland

ESET Ireland Official Blog

Tag: Windows