BlackLotus
IS profile experts reported that the source code of the BlackLotus bootkit for Windows UEFI has been published on GitHub.
BlackLotus is a Windows-centric UEFI bootkit that bypasses secure boot and antivirus solutions, persists on an infected system, and executes payloads with the highest level of privilege on the OS.
BlackLotus toolkit capabilities include breaking BitLocker data protection, Microsoft Defender, and hypervisor protected code integrity (HVCI), also known as memory integrity, which protects against attempts to exploit the Windows kernel.