Malware that hides in the kernel of the operating system

Very hard to find because it won't show up as a separate process

To mitigate, some UEFI BIOS options allow you to run in secure boot, where the cryptographic signature is compared to ensure integrity

Secure Boot ensures nothing has changed in the kernel