Arm devices are everywhere today and many of them run Linux. The operating system also powers cloud computing and IT environments all over the world. However, x86 is still the dominant architecture of ...

ESET researchers have discovered a vulnerability that allows bypassing UEFI Secure Boot, affecting the majority of UEFI-based systems. This vulnerability, assigned CVE-2024-7344, was found in a UEFI ...

A system can still boot normally while quietly falling into a degraded security state.

UPDATE: November 28, 3:20 PM California time. The headline of this post has been changed. This update is adding the following further details: this threat is not a UEFI firmware implant or rootkit, it ...

Event ID 1798 occurs when an attempt is made to add the Microsoft Windows Production PCA 2011 certificate; this is an old and less secure certificate compared to UEFI CA 2023. In this post, we will ...

In this post, we are going to see what you can do to resolve Event ID 1801, Secure Boot CA/keys need to be updated. Event ID 1801 is a warning logged by Windows to indicate that the Secure Boot ...

The original Unified Extensible Firmware Interface (UEFI) Secure Boot certificates for Windows will start expiring in late June. Microsoft has urged IT and security leaders to apply updated ...

A vulnerability in the user of hard-coded Platform Keys (PK) within the UEFI framework, known as PKfail, has been discovered. This flaw allows attackers to bypass critical UEFI security mechanisms ...

“In secure mode … the platform will only execute EFI binaries signed with a key that is whitelisted in the UEFI secure boot signature database,” Bottomley explained. The latest releases of many major ...

Around 200,000 Linux computer systems from American computer maker Framework were shipped with signed UEFI shell components that could be exploited to bypass Secure Boot protections. According to ...

UPDATE (December 2 nd, 2024): The bootkit described in this report seems to be part of a project created by cybersecurity students participating in Korea's Best of the Best (BoB) training program. As ...

Microsoft has released a PowerShell script to help Windows users and admins update bootable media so it utilizes the new "Windows UEFI CA 2023" certificate before the mitigations of the BlackLotus ...