MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
windows
Search

Microsoft Patches Windows To Eliminate Secure Boot Bypass Threat

Thursday January 16, 2025. 07:10 PM , from Slashdot
Microsoft Patches Windows To Eliminate Secure Boot Bypass Threat
Microsoft has patched a Windows vulnerability that allowed attackers to bypass Secure Boot, a critical defense against firmware infections, the company said. The flaw, tracked as CVE-2024-7344, affected Windows devices for at least seven months. Security researcher Martin Smolar discovered the vulnerability in a signed UEFI application within system recovery software from seven vendors, including Howyar.

The application, reloader.efi, circumvented standard security checks through a custom PE loader. Administrative attackers could exploit the vulnerability to install malicious firmware that persists even after disk reformatting. Microsoft revoked the application's digital signature, though the vulnerability's impact on Linux systems remains unclear.

Read more of this story at Slashdot.
Read more at Slashdot
https://it.slashdot.org/story/25/01/16/1755240/microsoft-patches-windows-to-eliminate-secure-boot-by...

Related News

windows Confirmed BitLocker bug prevents changing settings on Windows 11 PC WorldJan 16
microsoft Microsoft’s CoreAI Strategy: Same Azure Focus, New Wrapping? eWeekJan 16
bypass Optimum 10 Pro is an upgraded version of Windows 10 with next-level performance, privacy and control BetaNewsJan 16
boot Microsoft confirms strange ‘some settings are managed by your administrator’ BitLocker error BetaNewsJan 16
vulnerability Sticking with Windows 10? No more Microsoft 365 for you! BetaNewsJan 16
secure Build API clients with Microsoft Kiota InfoWorldJan 16
security More and more are leaving Microsoft 365 for this non-subscription alternative PC WorldJan 16
firmware Parallels brings back the magic that was waiting seven minutes for Windows to boot TheRegisterJan 16
attackers Microsoft Is Ending Support for Windows 10 Office Apps in October Wired: Tech.Jan 15
patches Microsoft creates new internal unit for AI development ComputerWorldJan 15
eliminate Microsoft adds ‘pay-as-you-go’ access for AI agents with M365 Copilot Chat ComputerWorldJan 15
threat Xbox consoles become more repairable as Microsoft pushes for sustainability BetaNewsJan 15
seven Windows Patch Tuesday hits snag with Citrix software, workarounds published TheRegisterJan 15
application Microsoft Will Not Support Office on Windows 10 After October 14 SlashdotJan 15
windows Update: Windows 11’s free upgrade path isn’t going away PC WorldJan 15
microsoft Microsoft will also stop supporting Office applications on Windows 10 after October 14 OS NewsJan 15
bypass Office 365 will officially lose support on Windows 10 come October PC WorldJan 15
boot Microsoft’s big Patch Tuesday fixes over twice as many security flaws as usual PC WorldJan 15
vulnerability Microsoft releases 161 Windows security updates OS NewsJan 15
secure Microsoft Relaunches Copilot for Business With Free AI Chat and Pay-As-You-Go Agents SlashdotJan 15
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Jan, Fri 17 - 00:42 CET