Windows 11’s secure boot fix update finally rolls out to more PCs

Microsoft has recently begun replacing expiring Secure Boot certificates on eligible Windows 11 systems running 24H2 and 25H2 ...
Windows Latest

Windows 11 gets Secure Boot Allowed Key Exchange Key (KEK) update on more PCs, requires a reboot to install

Microsoft is rolling out "Secure Boot Allowed Key Exchange Key (KEK) Update," which requires a system reboot to finish ...

Secure Boot Allowed Key Exchange Key (KEK) Update: What is it?

The Key Exchange Key (KEK) acts as an authority that allows Microsoft to update the other databases, like the DB and DBX that ...
Windows Report

Microsoft Restores Secure Boot FAQ Details Ahead of 2026 Certificate Expiration

Microsoft confirms systems without updated Secure Boot certificates will boot normally but lose some security protections.
XDA Developers on MSN

Microsoft's Secure Boot certificates expire in June 2026, but older PCs may never get the fix

Make sure you've updated before the deadline.
TWCN Tech News

Event ID 1034 or 1036: Secure Boot DBX update applied successfully

Event ID 1034: The cause of this informative event being logged is a confirmation that the Secure Boot DBX database has been updated successfully. Modifying or updating the untrusted Secure Boot ...
Ars Technica

Microsoft sounds the alarm about Secure Boot certificates expiring later this year

So... my Asus mobo (ROG Strix Z390-E Gaming) is from 2018, and while the code Andrew provided for PowerShell shows I'm OK for the new cert, I get "False" for Default ...