LEIPZIG, GERMANY – Researchers hunting cyber-espionage group Sednit (an APT also known as SofacyFancy Bear and APT28) say they have discovered the first-ever instance of a rootkit targeting the Windows Unified Extensible Firmware Interface (UEFI) in successful attacks.

https://threatpost.com/uefi-rootkit-sednit/140420/