Home Technology Microsoft continues to battle a vulnerability in Windows’ SecureBoot

Microsoft continues to battle a vulnerability in Windows’ SecureBoot

0
Microsoft continues to battle a vulnerability in Windows’ SecureBoot

An important Windows feature still contains vulnerabilities that give hackers a chance
(photo: CC0 Public Domain)

It will take almost a year for Microsoft to completely eliminate the bug from the zeroev eisnon secure boot feature Secure Bootaccording to the update schedule announced by the company.

Earlier this week, Microsoft released a patch for the Secure Boot vulnerability used by the BlackLotus malware that was reported in March. The original vulnerability CVE-2022-21894 was patched in January. The new security patch CVE-2023-24932 addresses another security hole actively used by hackers to breach systems running Windows 10/11 and Windows Server versions 2008 and later, Arstechnica reported.

The BlackLotus bootkit can bypass Secure Boot protection, allowing malicious code to run before the computer starts loading Windows and its protections. For more than a decade, Secure Boot mode has been enabled by default on most Windows computers sold by companies such as Dell, Lenovo, HP, Acer, and others. On computers running Windows 11, it must be enabled to meet the software’s system requirements.

Microsoft claims that the vulnerability could be exploited by an attacker with physical access to the system or administrative rights. A feature of the new security patch is that the computer will no longer be able to boot from older media that does not contain the patch.

To prevent user systems from becoming unbootable, Microsoft intends to roll out the update in stages over the next few months. A second update will follow in July, which won’t include the default patch, but will make it easier to enable.

The third update, planned for the first quarter of 2024, will enable the default security patch and make it impossible to boot from older media on all computers with Windows patches installed. At the same time, Microsoft is “looking for ways to accelerate this schedule.”

LEAVE A REPLY

Please enter your comment!
Please enter your name here