Microsoft has recently begun replacing expiring Secure Boot certificates on eligible Windows 11 systems running 24H2 and 25H2 ...

Make sure you've updated before the deadline.

Update 1/22/23: Title updated as MSI intentionally changed this setting as per statement below. Over 290 MSI motherboards are reportedly affected by an insecure default UEFI Secure Boot setting ...

Event ID 1798 occurs when an attempt is made to add the Microsoft Windows Production PCA 2011 certificate; this is an old and less secure certificate compared to UEFI CA 2023. In this post, we will ...

ESET researchers have discovered a vulnerability that allows bypassing UEFI Secure Boot, affecting the majority of UEFI-based systems. This vulnerability, assigned CVE-2024-7344, was found in a UEFI ...

A vulnerability in the user of hard-coded Platform Keys (PK) within the UEFI framework, known as PKfail, has been discovered. This flaw allows attackers to bypass critical UEFI security mechanisms ...

In this post, we are going to see what you can do to resolve Event ID 1801, Secure Boot CA/keys need to be updated. Event ID 1801 is a warning logged by Windows to indicate that the Secure Boot ...

Microsoft this week offered guidance on how organizations can investigate the possible presence of so-called "BlackLotus" bootkits, which are capable of exploiting Unified Extensible Firmware ...

Around 200,000 Linux computer systems from American computer maker Framework were shipped with signed UEFI shell components that could be exploited to bypass Secure Boot protections. According to ...

Why it matters: Discovered in October 2022, BlackLotus is a powerful UEFI-compatible bootkit sold on underground marketplaces at $5,000 per license. The malware provides impressive capabilities, and a ...