Techly NewsGet the app

Get the latest tech news

New UEFI vulnerability bypasses Secure Boot — bootkits stay undetected even after OS re-install


Microsoft has already blocked affected software with the latest Windows updates

Bleeping Computer reports that the vulnerability enables attackers to bypass Secure Boot and deploy bootkits that can be invisible to the operating system. Attackers can exploit this functionality by replacing an app's default OS bootloader on the EFI partition with a vulnerable version that contains a rudimentary encrypted XOR PE image. Microsoft has revoked the certificates of affected venerable software in the most recent Windows update, which went live this week on patch Tuesday.

Get the Android app

Or read this on r/technology

Read more on:

Photo of bootkits

bootkits

Photo of Secure Boot

Secure Boot

Related news:

News photo

New UEFI Secure Boot flaw exposes systems to bootkits, patch now

News photo

Microsoft patches Windows to eliminate Secure Boot bypass threat

News photo

Widely used DNA sequencer still doesn’t enforce Secure Boot

« Young people are hanging out less – it may be harming their mental health
Apple Explains Why It Removed TikTok From the App Store in the U.S. »