Temple os remains unaffected

Are we not going to talk about the fact that they got 3rd place and only $100 for this?

This isn't really a linux security issue but a generic security flaw in the uefi that has already been patched for a large number of systems. So this is nothing new. I think the more subtle point of this video is more about linux not being inherently more secure than windows if precautions aren't taken and vigilance not maintained.

As Linux continues to gain popularity for desktop use, I anticipate we'll start to see more genuine malware targeting common distros. Suffering from success.

Actually, this could be quite useful. I have some old cisco servers that refuse to boot because they don't have a good signature and it's impossible to turn off secure boot (thanks cisco). This is intentional and is confirmed on their forums. I'd really like to bypass secure boot somehow and use these servers some day

Legacy BIOS gang, how we doing? 😎

i hate AI generated images so much its unreal

Using Secure Boot with Nvidia and other propriety drivers can be a PITA, so most people don't use it to begin with. A lot of Linux users are vulnerable to this type of attack.

Not even IF, but WHEN this gets more popular, this will be an absolute nightmare to deal with for a lot of people.

Bruh, when i have my x86 assembly book, still with me from uni, and hearing about this; it is insane how small memory reallocation is needed to fool certificates. Holy shit, wow.

Feels like a nothingburger. LogoFAIL is a previous vulnerability, and as soon as you have rights to install a new bootloader AND you can enroll keys, all bets are off. Reminder, that you need to execute code as root to exploit logofail and install a new bootloader. It's almost like saying if you exploit dirtycow to gain root on systems still vulnerable, then you can run arbitrary code as root on the system. It's a good demo of existing techniques, but no new revolutionary technique was used, just a clever combination.

can't believe youtube shadow banned this video for 1 minute...

Geez. I'm gonna go back to filing cabinets, and cathode ray tube televisions. Life was easy.

oh god the comment section is already filled with bots

took a very big poo earlier, not feeling good.

Thanks for this excellent video. That's why I have SecureBoot with my own PlatformKey enrolled and latest firmware installed to mitigate logofail. Yet, it absolutely does not invalidates the point that UEFI opens an unnecessary attack vector.

To be or not to be a bot. This is the question

Updating your firmware via fwupdmgr often doesn't have the latest from the manufacturer. LVFS works best when manufacturers use it, but when they don't it can give a false sense of security. I've had to boot Windows just to update the firmware for both Lenovo and HP.

My brain can identify bot comments and it won’t even let me look at them it’s just auto skips them

ai generated cat laptop.jpeg

coreboot chads keep winning

Logofail has been patched already. This would only affect any system that hasn't done the security update.

Dude there are so many bots in the comments.

1:01 the cat on the laptop is AI

This is why you run TempleOS

has already been released as BootyKitty

algorithm. Thanks for doing all the work to find, understand, and explain these events. Greatly appreciated!

From the 💻Linux to the 🎋virus to the 🛤️UEFI to the 😺bootkitty🗣️🔥🔥🔥 wheres my 🏥Programmer always when my bios is broooookeeen💀

4:29 say that again

7:40 And yet that's impossible to do w/o installing Windows first on my Lenovo laptop, genius.

Awesome overview, and kudos for prompting folks to patch!

Absolutly horrifying (5 years ago)

Nice, same idea as tracking pics, but deeper in the system, nice work!

Predicted ages ago that, with the likely exodus from Microsoft Windows to Linux as Win10 support nears EoL, hackers and malware makers will exploit the vulnerabilities in Linux on a scale never seen.

I once heard 1 out of 3 comments is by a bot, but this comment section is more like 9/3 comments is by a bot!

Logofail and now this, should’ve just listened to Luke Smith and use BIOS.

Gonna go make my own bootloader to btfo all malware by security by obscurity.

Still safer than Windows... Good Info, thanks for reporting this.

Thanks for the explaination. I Can Now know for sure that I got 2 bootkits on 2 laptops of mine 😂

Attempt # 4. Trying to get your attention to check your microphone because your S letters sound like a sword cutting something.

00:30 when a kitty cats

It's been more than 10 years since I've seen something similar. But this still requires phisical access.

been a dev for 10 years and kept my head in the computer for 20 years and i've never done one single bios update :)) always been scared of bricking the computer

this is how skynut is formed

My work is called unified emergent field theory. And I miss read you using that acronym 😂. I was like who made a booklet in my work. 😮‍💨

Joke is on ya'll, I disable fullscreen logo because I think the debug and boot information looks better

I'm really curious as to what the image at 1:00 is supposed to be, it appears to be a cat with its paws on a laptop, but the laptop has a macropad instead of a trackpad?

All I know is that everything I do on my Linux desktop takes half the time it did when I last used Windows, with no constant crashes of QGIS. As far as the bootkit goes, I'm sure it will be taken care of before I upgrade to the next version of Mint (22.1).

The real shocker was that they have a "best of the best" competition, still valuing excellence. Over here it feels like everybody gets a participation trophy.

firware updates applied, thanks for the reminder!

What about disabling the splash screen, opting for the POST text instead? If I remember correctly, this was a way to mitigate the image vulnerability by not loading one at all...

The more popular the OS means more attacks on said OS.

haha I was so mad when Gigabyte removed the ability to replace the Aorus logo, but they said it was a sec vuln

I half expect bootkitty to become a popular VTuber channel name and it'll completely drown out this entire discussion about this.

That penguin pops back up like, I hope no one saw that lmao

wtf are these comments

The footage of penguins throwing themselves from the cliff was masterfully put.

You know how they say "enough internet for today"? Maybe we should skip internet for ever.

My grandma had a black cat named Boo and she often called it Boo Kitty.

BMP files are actually often compressed. Run length encoding, the lowest form of compression (bad but helps a lot for a small logo on a black background).

my oem still havent release a UEFI update....i am cooked

Nothing is secure; they’re deep into brainwave readers. “You will have to determine your OWN line in the sand…” Luigi Bro.

The best of the best is also a very fun and cheesy 80's karate movie x)

Jokes on them, I never figured out how to install an OS using UEFI.

It is time for FreeBSD

Excellent video 👍 Thank you 💜

Media: Malware that targets linux! Me: *Laughs in FreeBSD*

I like stupid bios.

7:24 i have no idea how to do that lol

Wtf are those comments?

Those damn vital logos are at it again. Imagine screwing up a BMP "decoder".

I feel like we are on the verge of an internet dark age...

Master Boot Record mentioned.

Mean the version used in the comp seems cool 😎 I'd just it on my laptop with 100% vulnerability because company hasn't updated it in almost 6 years... come out 7 years ago, as it turns out they dont care about the student machines Of all my computers only one was patched to fix logo fail properly Also happens to be the only expensive one made in last few years

Finally a not "bottom of the barrel" video

how would you go about recovering a compromised system???

Bootkit: are normal people targeted? Well not really. To change the boot logo, you need root to do that. So this is a persistance technique used after the server is compromised so the malware can stay present after a reinstall (see first minute of the video) It is not a malware you may be subject to from a normal ransomware.

🐧Th penguin fall footage was rough ! 🐧🤕.

Screw popular os systems, I’m gonna use the sun and pidgins to fo my math

posting from my thinkpad x41, what's a uefi?

What if your old computer doesn’t get the update?

Good luck getting BIOS updates for old motherboards.

Awww but it has such a cute name tho!!!

As a person who uses inside h20 BIOS, this scared me a little bit cus my manufacturer doesn't provide new BIOS updates anymore

The worst fate of all: to have an ai generated image shown to you every time you boot up your computer...

Don't most people keep secure boot off anyways in order to dual boot?

What do you think of Libreboot in 2024?

You should do videos on how to patch these vulnerabilities as they come out.

What would the path of infection be, how do they install it (if someone decides to use it non-ethically)?

I clicked just because of the thumbnail. Scary shit

I had this exact error message on my dual boot potato pop up last week, I don't use arch btw

Meow Ware and Imma1st Don't take my comments seriously. It's only a meme

Holyshit! Mah! What's for dinner? BOOTKITTY! What's that? LINUX MALWARE! Oh... Damnit, i hate malware!

*First bootkit for desktop Linux….these things are very prevalent in the server/enterprise world, like seriously if you have weak BMC creds or vulnerable onboard IPMI you’ll end up with a bootkit.

How does the attacker get the bmp onto the flash chip or wherever the original boot logo lives?

Switch the Linux development to Rust, to avoid buffer overflow problems they said...

BlackLotus with persistence. Ah, you say that already when i write comment.

does anyone remember to have such issues as long as we were still all happy go lucky with BIOS and Microsoft didn't push anyone to use UEFI? Well not me, thats for sure

How compatible is this? Like if you just made a custom kernel patch with extra init functions to directly block the functionality does it have workarounds? Is it possible to create an encryption stream for all kernel memory, mapping of function/data to specific locations, etc., such that even an EFI level process with secureboot permissions could not inject itself? I’ve always wondered about bootkits for linux cause the process is so much more variable. You could have the actual kernel files themselves and boot process files on the disk, randomize layout and labeling schemes for functions et al. along with loading order, such that a precompiled binary would not be able to determine where/how to inject into the stack, memory, or disk.

so they discovered NSA toy and now it's going to be fixed in the future?