The tool is spendy, but it offers threat actors the ability to take control of Windows machines, evade detection, and even persist across operating system installs. As a bootkit, BlackLotus loads on an infected system even before Windows, and that makes it hard for antimalware tools running at the operating system level to detect.
Read full article on HotHardware