Bleeping Computer

FinFisher malware hijacks Windows Boot Manager with UEFI bootkit

Commercially developed FinFisher malware now can infect Windows devices using a UEFI bootkit that it injects in the Windows Boot Manager. FinFisher (also known as FinSpy and Wingbird) is a ...
Threat Post

ESPecter Bootkit Malware Haunts Victims with Persistent Espionage

The rare UEFI bootkit drops a fully featured backdoor on PCs and gains the ultimate persistence by modifying the Windows Boot Manager. A rare Windows UEFI bootkit malware has been discovered, offering ...
TWCN Tech News

Event ID 1799, Boot Manager signed with Windows UEFI CA 2023 was installed successfully

Event ID 1799 is the event logged when a boot manager signed by the Windows UEFI CA 2023 certificate (the latest and most secure) runs on startup. This means all the security measures are in place, ...
Bleeping Computer

Microsoft blocks UEFI bootloaders enabling Windows Secure Boot bypass

Some signed third-party bootloaders for the Unified Extensible Firmware Interface (UEFI) could allow attackers to execute unauthorized code in an early stage of the boot process, before the operating ...
WeLiveSecurity

Under the cloak of UEFI Secure Boot: Introducing CVE-2024-7344

ESET researchers have discovered a vulnerability that allows bypassing UEFI Secure Boot, affecting the majority of UEFI-based systems. This vulnerability, assigned CVE-2024-7344, was found in a UEFI ...

VirtualBox boots only in UEFI Interactive shell

This is what you should do if your VirtualBox VM boots only in the UEFI Interactive shell. We talk about Windows and Linux ...
Ars Technica

Microsoft patches Windows to eliminate Secure Boot bypass threat

For the past seven months—and likely longer—an industry-wide standard that protects Windows devices from firmware infections could be bypassed using a simple technique. On Tuesday, Microsoft finally ...
WeLiveSecurity

BlackLotus UEFI bootkit: Myth confirmed

The number of UEFI vulnerabilities discovered in recent years and the failures in patching them or revoking vulnerable binaries within a reasonable time window hasn’t gone unnoticed by threat actors.
Neowin

KB5053484: Microsoft shares new PowerShell script for updated Windows 11/10 boot media0 0

Back in February of 2024, Microsoft announced that it was rolling out new 2023 Secure Boot Certificate Authority (CA) or keys that would replace the previous one from 2011 when Windows 8 was around ...
Neowin

Certificates for one of Windows 11's hardware requirements expire soon, here is what to know0 0

Secure Boot is a known term for Windows 11 users. It is one of Windows 11's hardware requirements, and without it, the operating system cannot be installed, at least ...
PC World

Your Windows PC refuses to start. Now what?

There are various reasons why Windows does not start. The first assumption is a defect in the boot environment that prevents the system from starting. However, causes can also be a defective file ...