Security · 1h ago
Forgotten Bootloaders Undermine Secure Boot for Years
Eleven revoked UEFI shim bootloaders remained trusted by systems for years, allowing attackers to bypass Secure Boot protections. The bootloaders were used in Linux distributions and signed by Microsoft. Researchers discovered the vulnerability, which affects millions of devices, and Microsoft has since revoked the certificates.
Meridian48 take
The incident highlights a systemic blind spot in Secure Boot's trust model, where once-signed code can remain trusted indefinitely even after being revoked.
secure-bootuefi-bootloaders