Security · 2h ago
Microsoft Secure Boot flaw left systems exposed for a decade
Researchers discovered that Microsoft failed to revoke outdated Secure Boot shims, allowing attackers to bypass the security feature. The vulnerability has existed for over ten years, affecting millions of Windows devices. Microsoft is now working on a patch to revoke the compromised shims.
Meridian48 take
The decade-long oversight underscores the challenge of maintaining legacy code in critical security infrastructure.
Read the full reporting
Microsoft’s Secure Boot has been broken for a decade and no one noticed until now →
Ars Technica AI
secure-bootmicrosoft