Microsoft is taking its time with the boot certificate rollout, but you don't have to. Activate the latest UEFI CA 2023 right now.

"When these images are parsed during boot, the vulnerability can be triggered and an attacker-controlled payload can arbitrarily be executed to hijack the execution flow and bypass security features ...

When installing a fresh copy of Windows 10, you typically use a USB flash drive to launch the "Windows Setup" wizard to continue with the installation process. However, on a device that has a Unified ...

The developers of the BlackLotus UEFI bootkit have improved the malware with Secure Boot bypass capabilities that allow it to infect even fully patched Windows 11 systems. BlackLotus is the first ...

Against the backdrop of the debacle that mitigating the BlackLotus bootkit has become, the Cybersecurity and Infrastructure Security Agency (CISA) is calling for revamped security for Unified ...

Microsoft is reminding users that the Secure Boot ecosystem will soon require a mandatory check-up. The Redmond-backed security protocol, part of the UEFI specification and primarily ...

UPDATE (December 2 nd, 2024): The bootkit described in this report seems to be part of a project created by cybersecurity students participating in Korea's Best of the Best (BoB) training program. As ...

Microsoft has announced it will deliver new Secure Boot certificates via Windows Update starting March 2026 before 2011 ...

While not production-ready malware, ‘Bootkitty’ provides a proof of concept for exploiting Linux systems at boot-up — widening the UEFI attack path beyond the Windows ecosystem. Bootkitty, a recently ...

The extended support updates (ESU) on Windows 7 ends today. Interestingly and rather bizarrely, Microsoft enabled native UEFI and Secure Boot. However, the new feature support is not without flaws.