V-Help
← All news
Security

Secure Boot Vulnerability: Microsoft Overlooked Issue for 10 Years

Secure Boot Vulnerability: Microsoft Overlooked Issue for 10 Years

Photo: Ars Technica

Quick answer

A decade-old vulnerability in Microsoft’s Secure Boot was recently uncovered. The flaw involved unrevoked 'shim' modules that enabled attackers to bypass protection and compromise device security.

Cybersecurity researchers have uncovered a critical vulnerability in Microsoft’s Secure Boot mechanism that went unnoticed for over a decade. The issue stems from so-called 'shim' modules—intermediate components Microsoft used to ensure compatibility with various UEFI versions. These modules were never revoked despite becoming obsolete, allowing attackers to bypass Secure Boot protection.

Secure Boot is designed to prevent the loading of untrusted software on UEFI-based devices. However, due to unrevoked 'shim' modules, attackers could load malicious software even on protected systems. The vulnerability affects millions of devices globally, including both enterprise and consumer computers.

Microsoft has already begun addressing the issue, but experts warn that the remediation process may take significant time due to the need to update firmware and certificates across all vulnerable devices. Users are advised to monitor and install security updates promptly.

Common questions

What is Secure Boot?
Secure Boot is a security mechanism that prevents the loading of untrusted software on UEFI-based devices. It safeguards systems from malware and rootkits during the early boot process.
Why did the vulnerability go unnoticed for so long?
The flaw was tied to outdated 'shim' modules that Microsoft never revoked. These modules were overlooked by researchers as they were deemed irrelevant, but in practice, they could be exploited to bypass protection.
Which devices are at risk?
Devices with Secure Boot support, including Windows-based PCs, laptops, and servers, are vulnerable. Systems using older 'shim' module versions are particularly at risk.
Share:

Dzen feed: /feed/dzen.xml · RSS: /feed.xml

Why trust this

Prepared by the V-Help editorial team from the primary source with a published date.

Published by: V-Help.ru news desk

Source: Ars Technica