WeLiveSecurity

Under the cloak of UEFI Secure Boot: Introducing CVE-2024-7344

ESET researchers have discovered a vulnerability that allows bypassing UEFI Secure Boot, affecting the majority of UEFI-based systems. This vulnerability, assigned CVE-2024-7344, was found in a UEFI ...
Hackaday

Linux Fu: UEFI Booting

Unless your computer is pretty old, it probably uses UEFI (Unified Extensible Firmware Interface) to boot. The idea is that a bootloader picks up files from an EFI partition and uses them to start ...
Ars Technica

Stop EFI boot order being mangled

This is not strictly a server-specific topic but this is something that probably becomes more of a problem with server and automated provisioning environments. Though in my case it's my home lab. Most ...

Windows 11’s secure boot fix update finally rolls out to more PCs

Microsoft has recently begun replacing expiring Secure Boot certificates on eligible Windows 11 systems running 24H2 and 25H2 ...
WeLiveSecurity

Bootkitty: Analyzing the first UEFI bootkit for Linux

UPDATE (December 2 nd, 2024): The bootkit described in this report seems to be part of a project created by cybersecurity students participating in Korea's Best of the Best (BoB) training program. As ...
Bleeping Computer

Microsoft blocks UEFI bootloaders enabling Windows Secure Boot bypass

Some signed third-party bootloaders for the Unified Extensible Firmware Interface (UEFI) could allow attackers to execute unauthorized code in an early stage of the boot process, before the operating ...
ZDNet

Linux on your laptop: A closer look at EFI boot options

For some time now I have gotten a slow but steady volume of requests that I write about UEFI firmware and EFI boot relative to installing and maintaining Linux. As a result of a casual comment I made ...