Malware Buried Deep Down the SPI Flash: Sednit's First UEFI Rootkit Found in the Wild
BIOS rootkits have been researched and discussed heavily in the past few years, but sparse evidence has been presented of real campaigns actively trying to compromise systems at this level. Our talk will reveal such a campaign successfully executed by the Sednit group. This APT group, also known as Fancy Bear, Sofacy and APT28, has been linked to numerous high profile cyberattacks such as the 2016 Democratic National Committee email leak scandal. By Jean-Ian Boutin & Frederic Vachon Full Abstract & Presentation Materials: https://www.blackhat.com/eu-18/briefi...
▶︎
Betraying the BIOS: Where the Guardians of the BIOS are Failing
▶︎
WireGuard: Next Generation Secure Network Tunnel
▶︎
Exposing Bootkits with BIOS Emulation
▶︎
Uncovering the Fake Cache BIOS Mystery!
▶︎
The Most Destructive Hack Ever Used: NotPetya
▶︎
DEF CON 33 - Kill List: Hacking an Assassination Site on the Dark Web - Carl Miller, Chris Monteiro
▶︎
Extracting Firmware from Embedded Devices (SPI NOR Flash) ⚡
▶︎
Something is jamming GPS over Europe. Here's what we found
▶︎
Demystifying Modern Windows Rootkits
▶︎
Mastering UEFI: Your Essential Guide to Hardware-Firmware and Boot-Chain Security
▶︎
Windows Offender: Reverse Engineering Windows Defender's Antivirus Emulator
▶︎
NIST Cybersecurity Framework Explained
▶︎
Firmware security, why it matters and how you can have it
▶︎
Practical Malware Analysis Essentials for Incident Responders
▶︎
ATT&CK® Deep Dive: How to Detect Rootkits
▶︎
The Most Mysterious File On The Internet
▶︎
LogoFAIL: Security Implications of Image Parsing During System Boot
▶︎
Attacking AI - Jason Haddix - NDC Security 2026
▶︎
A UEFI firmware bootkit in the wild by Ivan Kwiatkowski | Nullcon Goa 2022
▶︎