Hackaday

Play Games In UEFI…to Access Your Computer

These days, bootstrapping a computer is a pretty straight forward process, at least as far as the user is concerned. But in ...

Motherboards from Gigabyte, MSI, ASUS, ASRock at risk from UEFI flaw attack

UEFI flaw leaves ASUS, Gigabyte, MSI, and ASRock motherboards exposed to DMA attacks Firmware falsely reports IOMMU protection enabled, allowing malicious PCIe devices pre‑boot access Riot Games ...
WeLiveSecurity

Under the cloak of UEFI Secure Boot: Introducing CVE-2024-7344

ESET researchers have discovered a vulnerability that allows bypassing UEFI Secure Boot, affecting the majority of UEFI-based systems. This vulnerability, assigned CVE-2024-7344, was found in a UEFI ...

New Windows updates replace expiring Secure Boot certificates

Microsoft has started rolling out new Secure Boot certificates that will automatically install on eligible Windows 11 24H2 ...
SDxCentral

VU#529659: Howyar Reloader UEFI bootloader vulnerable to unsigned software execution

The Howyar UEFI Application “Reloader” (32-bit and 64-bit), distributed as part of SysReturn prior to version 10.2.02320240919, is vulnerable to the execution of arbitrary software from a hard-coded ...
Guru3D

Windows Secure Boot certificates expire in 2026; Windows 10 users impacted

Microsoft is in the middle of a Secure Boot certificate transition that many users will not notice until it becomes a problem ...
CSOonline

Palo Alto Networks firewalls have UEFI flaws, Secure Boot bypasses

Researchers have discovered that next-generation firewalls from Palo Alto Networks contain years-old known vulnerabilities in their UEFI firmware — a finding that provides yet more evidence of a ...