Security · 1h ago
11 Old Microsoft-Signed UEFI Shims Let Attackers Bypass Secure Boot
Researchers found 11 old Microsoft-signed UEFI shims that can be exploited to bypass Secure Boot on most modern systems. Attackers can use these to execute untrusted code during boot, deploying bootkits or other malware. The vulnerabilities stem from outdated shims that were once signed by Microsoft but are no longer secure.
Meridian48 take
This highlights the risk of legacy signed components: once trusted, they remain trusted indefinitely, creating a permanent backdoor.
Read the full reporting
11 Old Microsoft-Signed Linux UEFI Shims Could Let Attackers Bypass Secure Boot →
The Hacker News
secure-bootuefi-vulnerability