Bleeping Computer

PKfail Secure Boot bypass lets attackers install UEFI malware

Hundreds of UEFI products from 10 vendors are susceptible to compromise due to a critical firmware supply-chain issue known as PKfail, which allows attackers to bypass Secure Boot and install malware.
Bleeping Computer

PKfail Secure Boot bypass remains a significant risk two months later

Roughly nine percent of tested firmware images use non-production cryptographic keys that are publicly known or leaked in data breaches, leaving many Secure Boot devices vulnerable to UEFI bootkit ...
Forbes

Microsoft Windows Secure Boot Bypass Confirmed — Update Now

I always get a bit jittery whenever I hear of a new vulnerability that can enable a bypass of the Windows Secure Boot protections. I don’t really need to explain why, do I? Suffice to say, Secure Boot ...
Dark Reading

Millions of Devices Vulnerable to 'PKFail' Secure Boot Bypass Issue

Attackers can bypass the Secure Boot process on millions of Intel and ARM microprocessor-based computing systems from multiple vendors, because they all share a previously leaked cryptographic key ...
TWCN Tech News

Secure Boot can be enabled when System in User Mode

You may see the “Secure Boot can be enabled when System in User Mode” error message while enabling the Secure Boot on your device. If you want to install Windows ...
CSOonline

Secure Boot no more? Leaked key, faulty practices put 900 PC/server models in jeopardy

PKfail: An AMI Platform Key discovered on GitHub led researchers to uncover test keys in firmware images from major PC and server vendors, something hackers could exploit if leaked to gain kernel ...