Microsoft Blocks UEFI Boot Loaders That Can Bypass Secure Boot
Tech News

Microsoft Blocks UEFI Boot Loaders That Can Bypass Secure Boot

Security researchers have criticized Microsoft’s response to the discovery that there were new vulnerabilities in the bootloader, which could be used to gain control over the boot process. Microsoft blocked some UEFI bootloaders. Microsoft has removed three third-party UEFI bootloaders from Windows 10 and Windows 11 with the August Patch Day updates.

Third-party bootloaders are at risk: Eurosoft Ltd., New Horizon Datasys, Inc., Kidan’s CryptoPro Safe Disk (CVE-2022-34302) and Eurosoft Ltd. (CVE-2022-334301). Threat actors could exploit the vulnerabilities to bypass Secure Boot and ignore security protocols that OEMs and operating systems vendors use to authenticate boot loaders and UEFI driver drivers with valid digital signatures.
It is possible to inject malicious code through circumvention

Threat actors can bypass Secure Boot checks and launch attacks, modify operating systems, disable security checks, or install backdoors.
Problem certificate authority

It is fundamentally important to block these bootloaders so that security holes cannot be exploited. This is a problem that Microsoft has to face, and not only with third-party providers. Previously Microsoft had signed the bootloader and issued it with a certificate of no objection. However, the bootloaders are not Microsoft products; they were signed by the software giant’s UEFI Certificate Authority (CA).

Security researchers claim that Microsoft signed the bootloaders (and others) now excluded without performing a code analysis. One researcher stated that although third parties submit bootloaders to Microsoft for review and different vendors have different levels of security. Online magazine SearchSecurity. As such, engineered bootloaders can pass the Secure Boot test if they have been signed by Microsoft. It checks that the code works on the system. It doesn’t verify if the code works correctly or not. Microsoft has not fixed this fundamental flaw.

Microsoft Blocks UEFI Boot Loaders That Can Bypass Secure Boot
Click to comment

Leave a Reply

Your email address will not be published.

Most Popular

To Top