A new TrickBoot module scans for vulnerable firmware and has the ability to read, write and erase it on devices. TrickBot malware has morphed once again, this time implementing functionality designed to inspect the UEFI/BIOS firmware of targeted systems. It marks a serious resurgence following an October takedown of the malware s infrastructure by Microsoft and others. The new bootkit allows an attacker to control how the operating system is booted or even modify the OS to gain complete control over a system.
Source: https://threatpost.com/trickbot-returns-bootkit-functions/161873/