The National Security Agency (NSA) has issued a report on a new cyber vulnerability that threatens certain systems present within the Department of Defense and other organizations.
The BootHole vulnerability allows cyber actors to get through the Secure Boot security standard that makes devices boot only with software trusted by original manufacturers, NSA said Thursday.
Cyber terrorists may use this vulnerability to tamper with a device’s boot process. Devices running on Linux or Windows 8 and above may be affected by this vulnerability.
NSA provided two mitigation options in the “Mitigate the GRUB2 BootHole Vulnerability” report for users of Linux, an operating system that uses the Grand Unified Bootloader 2 or GRUB2 affected by BootHole.
For the standard mitigation, the report advises Linux users to update the boot components of endpoints. The agency will soon release another report for users of Windows and other systems based on the Unified Extensible Firmware Interface.
NASA has concluded the systems integration review of a space probe mission that will explore Jupiter’s Trojan asteroids, verifying the spacecraft’s components for integration. The review evaluated the integration schedule of the Lucy spacecraft’s subsystems, electrical components, scientific instruments, navigation systems and communications.
ExecutiveGov, published by Executive Mosaic, is a site dedicated to the news and headlines in the federal government. ExecutiveGov serves as a news source for the hot topics and issues facing federal government departments and agencies such as Gov 2.0, cybersecurity policy, health IT, green IT and national security. We also aim to spotlight various federal government employees and interview key government executives whose impact resonates beyond their agency.