bootkit

Bootkit is a type of malware that targets the boot process of a computer system. By infecting the boot sector, boot manager, or firmware used during startup, a bootkit loads before the operating system and can take control of the system at the earliest possible stage. This enables persistence across reboots and can hide its presence from standard security tools.

Bootkits can reside in the master boot record (MBR) of traditional disks, the partition boot record (PBR),

Infection methods include social engineering, compromised software updates, infected removable media, supply-chain compromises, or exploiting firmware

Impact can involve stealthy operation, persistence across reboots, evasion of antivirus detection, potential data theft, privilege

Defense and mitigation strategies emphasize boot-time protections and firmware integrity. Use Secure Boot and Measured Boot