headlinez.news Live news trend intelligence
▲ Peaking Technology

Microsoft’s Secure Boot has been broken for a decade and no one noticed until now

Newly identified vulnerabilities in Microsoft-signed UEFI shims allow for Secure Boot bypasses that have persisted for a decade.

5sources
5articles
14velocity
+0%since first seen
just nowfirst detected

Velocity

How fast coverage is spreading — measured hourly from article rate × source diversity. How this works →

The brief

Researchers have identified 11 outdated UEFI shims signed by Microsoft that contain security vulnerabilities. These flaws enable attackers to bypass Secure Boot, a feature designed to ensure a computer boots using only software trusted by the manufacturer.

ESET Research is credited with discovering the issue, noting that the presence of these old, signed applications undermines the integrity of the boot process. Future developments depend on how manufacturers address these specific UEFI shims and whether affected devices receive patches to revoke trust in the vulnerable applications.

Specific remediation timelines and the full scope of potentially impacted hardware remain to be determined.

Synthesized by headlinez.news from the headlines below under a strict no-invention contract. ✓ fact-checked: unsupported claims removed (83% supported) Updated just now.

Quick answers

What is the nature of the security flaw?

The flaw involves old, Microsoft-signed UEFI shims that can be exploited to bypass the Secure Boot security feature.

How many shims are affected?

Coverage identifies 11 old, Microsoft-signed Linux UEFI shims involved in the bypass.

How long have these vulnerabilities existed?

According to reports, the vulnerabilities have been present for a decade.

Coverage (5)

Topics

Related trends