{"id":37140,"date":"2020-09-16T00:40:36","date_gmt":"2020-09-16T00:40:36","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/"},"modified":"2020-09-16T00:40:36","modified_gmt":"2020-09-16T00:40:36","slug":"worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/","title":{"rendered":"Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency"},"content":{"rendered":"<p>The NSA has published online a guide for IT admins to keep systems free of bootkits and rootkits.<\/p>\n<p>The American surveillance super-agency&#8217;s <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/media.defense.gov\/2020\/Sep\/15\/2002497594\/-1\/-1\/0\/CTR-UEFI-SECURE-BOOT-CUSTOMIZATION-20200915.PDF\/CTR-UEFI-SECURE-BOOT-CUSTOMIZATION-20200915.PDF\">39-page explainer<\/a> [PDF] covers UEFI security and, in particular, how folks can master Secure Boot and avoid switching it off for compatibility reasons.<\/p>\n<p>A bootkit is a piece of software that runs before the OS starts up and tampers with it to ensure it runs some kind of malicious code later. Said code could be a rootkit that ensures another piece of the puzzle \u2013 spyware or ransomware, say \u2013 is deployed and executed with sysadmin-level powers. Secure Boot is a mechanism that uses cryptography to ensure you&#8217;re booting an operating system that hasn&#8217;t been secretly meddled with; any addition of a bootkit or rootkit should be caught by Secure Boot.<\/p>\n<p>The guide walks people through the steps to deploy Secure Boot. The key thing is stopping a miscreant who has managed to obtain physical or admin-level access to a computer from gaining persistent, hidden control over the machine by altering the operating system and any software on top of it from the firmware level.<\/p>\n<div class=\"promo_article\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2015\/05\/04\/windows_server.jpg?x=174&amp;y=115&amp;crop=1\" width=\"174\" height=\"115\" alt=\"Windows Server\"><\/p>\n<h2 title=\"Jan 1, 2021 deadline for server-makers to get with the program\">Windows Server to require TPM2.0 and Secure boot by default in future release<\/h2>\n<p><a href=\"https:\/\/www.theregister.com\/2020\/06\/15\/windows_server_hardware_security\/\"><span>READ MORE<\/span><\/a><\/div>\n<p>&#8220;Malicious actors target firmware to persist on an endpoint,&#8221; the agency noted.<\/p>\n<p>&#8220;Firmware is stored and executes from memory that is separate from the operating system and storage media. Antivirus software, which runs after the operating system has loaded, is ineffective at detecting and remediating malware in the early-boot firmware environment that executes before the operating system. Secure Boot provides a validation mechanism that reduces the risk of successful firmware exploitation and mitigates many published early-boot vulnerabilities.&#8221;<\/p>\n<p>While the document is intended to serve as a guide for admins in US government organizations, such as the Department of Defense, it also has good advice for those in the private sector worried about software nasties, rogue insiders, and other miscreants gaining a sturdy foothold in corporate networks.<\/p>\n<p>The best way to avoid trouble, says No Such Agency, is to simply avoid turning off Secure Boot in the first place. The NSA acknowledges that this isn&#8217;t always practical, and there are a number of situations where Secure Boot gets in the way. With that in mind, the agency recommends the following:<\/p>\n<p>Mind you, this doesn&#8217;t mean Secure-Boot-capable firmware is infallible at stopping bootkit and rootkit infections. The NSA noted that PCs with UEFI Fast Boot enabled may not vet software as thoroughly, and therefore may allow malware <a target=\"_blank\" href=\"https:\/\/www.theregister.com\/2019\/01\/02\/lojax_uefi_rootkit\/\" rel=\"noopener noreferrer\">like LoJax<\/a> to sneak through.<\/p>\n<p>Because of this, the agency advises government agencies that are particularly paranoid about their network security to check the Secure Boot settings on all machines to make sure they&#8217;ve set up the proper protections and disabled any bypasses.<\/p>\n<p>Other options for improving Secure Boot security include rolling your own allow and deny-list databases and removing the Microsoft Certificate database that is used by default to check operating systems and hardware components. This would, the NSA notes, prevent inside attackers from downgrading the OS or installing other hardware components.<\/p>\n<p><code>#include &lt;std\/nsa_can_already_bypass_this_theory.h&gt;<\/code> \u00ae<\/p>\n<p> READ MORE <a href=\"https:\/\/go.theregister.com\/feed\/www.theregister.com\/2020\/09\/16\/nsa_secureboot_guide\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>And have you tried simply asking hackers to not hack? The NSA has published online a guide for IT admins to keep systems free of bootkits and rootkits.\u2026  READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":37141,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-37140","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2020-09-16T00:40:36+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/09\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"174\" \/>\n\t<meta property=\"og:image:height\" content=\"115\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency\",\"datePublished\":\"2020-09-16T00:40:36+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/\"},\"wordCount\":535,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/09\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency.jpg\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/\",\"name\":\"Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/09\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency.jpg\",\"datePublished\":\"2020-09-16T00:40:36+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/09\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2020\\\/09\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency.jpg\",\"width\":174,\"height\":115},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/","og_locale":"en_US","og_type":"article","og_title":"Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2020-09-16T00:40:36+00:00","og_image":[{"width":174,"height":115,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/09\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency","datePublished":"2020-09-16T00:40:36+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/"},"wordCount":535,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/09\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency.jpg","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/","url":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/","name":"Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/09\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency.jpg","datePublished":"2020-09-16T00:40:36+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/09\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2020\/09\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency.jpg","width":174,"height":115},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/worried-about-bootkits-rootkits-uefi-nasties-have-you-tried-turning-on-secure-boot-asks-the-no-sh-agency\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Worried about bootkits, rootkits, UEFI nasties? Have you tried turning on Secure Boot, asks the No Sh*! Agency"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/37140","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=37140"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/37140\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/37141"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=37140"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=37140"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=37140"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}