Microsoft has patched two flaws (CVE-2023-29336 and CVE-2023-24932) that have been actively exploited.
Lenovo has released security advisories addressing a trio of flaws that impact dozens of laptop models.
Researchers believe that China-linked threat group APT41 is behind the highly targeted attack.
Researchers have discovered a new UEFI bootkit called ESPecter that can modify the Windows Boot Manager.