UEFI Bootkits and Where UEFI Security Fails
RSA Conference 2024 · Track Session
This talk, presented by Martin Smolar, a Malware Researcher at ESET, delves into the escalating threat of UEFI bootkits and the systemic failures in UEFI security that enable them. Smolar highlights that despite the widespread adoption of UEFI Secure Boot, which was intended to secure the system boot process, recent discoveries like **BlackLotus** have unequivocally demonstrated that bootkits remain a potent and evolving danger. The presentation serves as a critical call to action, emphasizing that relying solely on default Secure Boot settings is insufficient and that a multi-layered approach involving firmware developers, hardware manufacturers, and security professionals is essential to bolster UEFI cybersecurity.