Microsoft’s Secure Boot has been broken for a decade and no one noticed until now
Summary
Ars Technica reports that Microsoft's Secure Boot can be bypassed using old, unrevoked shims, discovered by ESET. The piece explains how these signed boot components undermine UEFI Secure Boot, the threat to Windows and Linux, and the revocation and policy mechanisms involved. It discusses the complexity of Secure Boot's databases and the need for better revocation and design.