TIL that a bunch of the Microsoft UEFI CA certificates are expiring in 2026 (October I think; page 8 of PDF linked). They’ll be ~15 years old by then so I kinda understand why they’re expiring. But OTOH they’ve never expired before or been updated in firmware world wide at scale before, so… 😬🍿
(Via 38C3 talk on getting into Bitlocker drive on Windows Home via bootloader downgrade attack and PXE booting.)
https://uefi.org/sites/default/files/resources/Evolving%20the%20Secure%20Boot%20Ecosystem_Flick%20and%20Sutherland.pdf
https://media.ccc.de/v/38c3-windows-bitlocker-screwed-without-a-screwdriver
=> More informations about this toot | View the thread | More toots from ewenmcneill@cloudisland.nz
text/geminiThis content has been proxied by September (ba2dc).