WeLiveSecurity

BlackLotus UEFI bootkit: Myth confirmed

The number of UEFI vulnerabilities discovered in recent years and the failures in patching them or revoking vulnerable binaries within a reasonable time window hasn’t gone unnoticed by threat actors.
Ars Technica

Found in the wild: 2 Secure Boot exploits. Microsoft is patching only 1 of them.

Researchers have unearthed two publicly available exploits that completely evade protections offered by Secure Boot, the industry-wide mechanism for ensuring devices load only secure operating system ...
Linux Journal

Why Ubuntu Secure Boot is Essential for Protecting Your Computer

As our reliance on technology grows, so does the need for robust security measures that protect systems from unauthorized access and malicious attacks. One critical area of focus is the system's boot ...
WeLiveSecurity

Under the cloak of UEFI Secure Boot: Introducing CVE-2024-7344

ESET researchers have discovered a vulnerability that allows bypassing UEFI Secure Boot, affecting the majority of UEFI-based systems. This vulnerability, assigned CVE-2024-7344, was found in a UEFI ...
Dark Reading

BlackLotus Secure Boot Bypass Malware Set to Ramp Up

BlackLotus, the first in-the-wild malware to bypass Microsoft's Secure Boot (even on fully patched systems), will spawn copycats and, available in an easy-to-use bootkit on the Dark Web, inspire ...
Bleeping Computer

MSI breaks Secure Boot for hundreds of motherboards

Update 1/22/23: Title updated as MSI intentionally changed this setting as per statement below. Over 290 MSI motherboards are reportedly affected by an insecure default UEFI Secure Boot setting ...
heise online

Secure Boot Certificates: Microsoft Defender Provides Overview

Microsoft wants to help identify machines with expiring Secure Boot certificates from 2011 in the enterprise environment. Some assistance for networks was already available, and now Microsoft Defender ...