Roughly nine percent of tested firmware images use non-production cryptographic keys that are publicly known or leaked in data breaches, leaving many Secure Boot devices vulnerable to UEFI bootkit ...

A couple of months ago, we reported on the PKfail vulnerability in Secure Boot — a security issue that stems from hardware manufacturers shipping devices with known compromised software. After digging ...

Microsoft is taking its time with the boot certificate rollout, but you don't have to. Activate the latest UEFI CA 2023 right now.

Researchers have uncovered "LogoFAIL," a set of critical vulnerabilities present in the Unified Extensible Firmware Interface (UEFI) ecosystem for PCs. Exploitation of the vulnerabilities nullify ...

Attackers can bypass the Secure Boot process on millions of Intel and ARM microprocessor-based computing systems from multiple vendors, because they all share a previously leaked cryptographic key ...

I'm assuming the issue is that some exploit in the last year has resulted in the UEFI being revoked. Can I ignore this warning, turn off secure boot, update Ubuntu, and then turn it back on? Or do I ...

Updated firmware trust chains strengthen rootkit protection and zero-trust infrastructure security.

Microsoft has recently begun replacing expiring Secure Boot certificates on eligible Windows 11 systems running 24H2 and 25H2, according to a report by BleepingComputer. Update: On February 10, ...

Microsoft is rolling out refreshed Secure Boot certificates across the Windows ecosystem, aiming to replace the original trust anchors that have been in use since 2011. Secure Boot is enforced by UEFI ...

Two research groups demonstrate PC firmware vulnerabilities that are difficult to mitigate and likely to be exploited in the wild. Two teams of researchers have revealed vulnerabilities this week in ...