UEFI

Under the cloak of UEFI Secure Boot: Introducing CVE-2024-7344

ESET researchers have discovered a vulnerability that allows bypassing UEFI Secure Boot, affecting the majority of UEFI-based systems. This vulnerability, assigned CVE-2024-7344, was found in a UEFI application signed by Microsoft’s Microsoft Corporation UEFI CA 2011 third-party UEFI certificate. Exploitation of this vulnerability leads to the execution of untrusted code during system boot, enabling potential…

Bootkitty: Analyzing the first UEFI bootkit for Linux

ellonjohns3 weeks ago032 mins

UPDATE (December 2nd, 2024): The bootkit described in this report seems to be part of a project created by cybersecurity students participating in Korea’s Best of the Best (BoB) training program. As they informed us: “The primary aim of this project is to raise awareness within the security community about potential risks and to encourage…

Highlights

5 Best Inkjet Printer to Buy in 2025

Simulating High-Power Sinusoidal Applications With Switch Models In SPICE

The 17 best portable Bluetooth speakers for 2025

Google DeepMind Introduces MONA: A Novel Machine Learning Framework to Mitigate Multi-Step Reward Hacking in Reinforcement Learning

Category Collection

Under the cloak of UEFI Secure Boot: Introducing CVE-2024-7344

Bootkitty: Analyzing the first UEFI bootkit for Linux