Following my recent posts concerning my experiences with Unified Extensible Firmware Interface (UEFI) and secure booting, here's a Q&A with Mark Doran, the UEFI forum president. In general I agree ...

Secure Boot has relied on the same security certificates to verify bootloaders since 2011, during the development cycle for Windows 8. But those original certificates are set to expire in June and ...

The developers of the BlackLotus UEFI bootkit have improved the malware with Secure Boot bypass capabilities that allow it to infect even fully patched Windows 11 systems. BlackLotus is the first ...

When installing a fresh copy of Windows 10, you typically use a USB flash drive to launch the "Windows Setup" wizard to continue with the installation process. However, on a device that has a Unified ...

UPDATE (December 2 nd, 2024): The bootkit described in this report seems to be part of a project created by cybersecurity students participating in Korea's Best of the Best (BoB) training program. As ...

ESET researchers have discovered a vulnerability that allows bypassing UEFI Secure Boot, affecting the majority of UEFI-based systems. This vulnerability, assigned CVE-2024-7344, was found in a UEFI ...

Share on Facebook (opens in a new window) Share on X (opens in a new window) Share on Reddit (opens in a new window) Share on Hacker News (opens in a new window) Share on Flipboard (opens in a new ...

After the two previous posts about installing openSuSE 12.3 and Fedora 18 on my sub-notebooks with UEFI BIOS and Windows 8, my intention was to continue with the same theme a third time and write ...

A vulnerability in trusted system recovery programs could allow privileged attackers to inject malware directly into the system startup process in Unified Extensible Firmware Interface (UEFI) devices.

This is not strictly a server-specific topic but this is something that probably becomes more of a problem with server and automated provisioning environments. Though in my case it's my home lab. Most ...