Script kiddies and other less competent cyber-criminals can now have a peek at the heart of the beast: the source code of BlackLotus, the “invisible” UEFI bootkit capable of defeating the most advanced security features of a fully updated Windows installation, has been uploaded to GitHub by an unknown user going by the name “yukari.”
The BlackLotus bootkit was initially discovered by security researchers on underground marketplaces, where the malware authors were selling a “license” to use their creation for $5,000. They also offered a “rebuild” of the malware code with custom features for $200, though the original source code of the malicious program was seemingly kept private.
