ESPecter: Showing the Future of UEFI Threats

Posted on in Presentations

In recent years, it's become clear that UEFI threats are real and have been deployed in the wild. UEFI implants such as LoJax and MosaicRegressor have used the lowest level of persistence, SPI flash, but is it worth it? Actors behind ESPecter bootkit think that compromising the bootloader is the way. This session will explain why and how to protect against this and similar threats.

Jean-Ian Boutin


Director of Threat Research, ESET

Martin Smolar


Malware Researcher, ESET

Share With Your Community