#secure-boot — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #secure-boot, aggregated by home.social.
-
📬 BitUnlocker knackt BitLocker in unter fünf Minuten
#ITSicherheit #Bitlocker #BitUnlocker #CVE202548804 #KB5025885 #SecureBoot #TPM #TPMonlyBitLocker #Windows11 #WinRE #YellowKey https://sc.tarnkappe.info/2ff8e4 -
Now it is a great time to ensure you've updated your #UEFI #Windows #SecureBoot Certificate Authority to 2023 versions. The old keys from 2011 are set to expire in June 2026.
Quoting microsoft:
"Devices that haven’t received the newer 2023 certificates will continue to start and operate normally, and standard Windows updates will continue to install. However, these devices will no longer be able to receive new security protections for the early boot process, including updates to Windows Boot Manager, Secure Boot databases, revocation lists, or mitigations for newly discovered boot level vulnerabilities.
Over time, this limits the device’s protection against emerging threats and may affect scenarios that rely on Secure Boot trust, such as BitLocker hardening or third-party bootloaders. Most Windows devices will receive the updated certificates automatically, and many OEMs provide firmware updates when needed. Keeping your device current with these updates helps ensures it can continue receiving the full set of security protections that Secure Boot is designed to provide."
-
Part 2 of my graceful reboot series - a real-world use case: pushing Microsoft's 2026 Secure Boot certificate update via Intune Remediations, with a user-friendly reboot built in.
-
🎉 Ah, the classic tale of #nerds on an #island 🌴 trying to turn #NixOS into Fort Knox, but instead, they just made it "Secure-ish Boot" 😂. Apparently, the real #hackathon challenge was figuring out how to spell "focused" correctly. 🙄
https://x86.lol/generic/2022/11/26/lanzaboote.html #SecureBoot #Comedy #HackerNews #ngated -
Another amazing research by @raelizecom
AI-FI: Giving Claude Code #Glitch Skills for Bypassing #SecureBoot
https://raelize.com/blog/ai-fi-giving-claude-code-glitch-skills-for-bypassing-secure-boot/
-
Secure Boot Certificate in QEMU Ubuntu 24.04 for Windows Guest #virtualization #qemu #secureboot #certificates
-
Secure Boot is fully supported in RELIANOID Enterprise Edition 🔐
But—as expected with UEFI—you need a proper trust bootstrap first.
We’ve documented the full process:
• Install with Secure Boot disabled
• Enroll RELIANOID MOK
• Enable Secure Boot safely
• Verify everything is trusted ✅Plus troubleshooting & security notes.
-
How to Check If Secure Boot Is Enabled (2026): Quick Fix If It’s Off 🔐
Blocked by Windows 11 upgrade errors or games not launching? Learn how to check Secure Boot status in seconds and fix it fast using simple methods.
#SecureBoot #Windows11 #PCFix #Technology #Izoate
https://www.izoate.com/blog/how-to-check-if-secure-boot-is-enabled-2026-quick-steps/
-
While working on a friend’s Windows 11 laptop, I decided to test which distros on my Ventoy SSD support Secure Boot OOTB on their installers:
Works:
Arch Installer
CachyOS
EndeavourOS
StormOS
Debian
LinuxMint
Proxmox
Q4OS
Ubuntu
Zorin
Fedora
OpenSuseDoesn’t Work:
Bluestar
Garuda (What I currently use)
Manjaro
Pop!_OS 24.04 -
Secure Boot Certificates: Microsoft Defender Provides Overview
Time is running out: The Secure Boot certificates from 2011 expire in June of this year. Microsoft Defender helps in the enterprise environment.
-
Secure-Boot-Zertifikate: Microsoft Defender verschafft Überblick
Die Zeit wird knapp: Die Secure-Boot-Zertifikate aus 2011 laufen ab Juni dieses Jahres ab. Microsoft Defender hilft im Enterprise-Umfeld.
-
Secure Boot Allowed Signature DB update is rolling out to Windows 11 PCs!
#Windows #Microsoft #TechNews #TechUpdates #MicrosoftWindows #Windows11 #Computers #Laptops #UEFI #SecureBoot
https://officialaptivi.wordpress.com/2026/04/25/secure-boot-allowed-signature-database-update-begins-rolling-out-for-windows-11-users/ -
Secure Boot Allowed Signature Database update begins rolling out for Windows 11 users!
As we are very close to the expiry date of the old Secure Boot signatures for Windows in June 2026, both Microsoft and computer manufacturers have started taking steps to ensure that everyone gets updated to the newer Secure Boot signatures prior to the expiry of the old signatures.
The following signatures are set to expire:
- Microsoft Corporation KEK CA 2011: June 2026
- Microsoft Windows Production PCA 2011: October 2026
- Microsoft UEFI CA 2011: June 2026
The new certificates, which will replace the above ones, will be used on your computer:
- Microsoft Corporation KEK 2K CA 2023
- Windows UEFI CA 2023
- Microsoft Option ROM UEFI CA 2023
Since the Secure Boot certification expiry topic has been brought up, BIOS updates have been done in order to prepare the computer for the new Secure Boot certification. Now, we have spotted a new update that updates the Secure Boot Allowed Signature DB to include the new certificates. The update will require your computer to restart.
Your computer should be able to update the Secure Boot database by itself, but you’ll need to restart your computer to finish installing the new Secure Boot database. It will take at least 2 minutes to install the updated database.
After that, Windows Security should say that you have no pending Secure Boot updates available. To verify, open Windows Security, navigate to Device Security, and look for Secure Boot. If everything is successful, you should be able to see:
If your device didn’t get the secure boot database update, wait for a few days, or check for updates using Settings > Windows Update > Check for Updates. Please note that old devices may not get the Secure Boot database update.
#news #SecureBoot #SecureBootDatabase #SecureBootDB #Tech #Technology #update #Windows #Windows10 #Windows11 -
#VirtualBox 7.2.8: Bugfixes für #Linux :tux: , #Wayland und #SecureBoot | iX Magazin https://www.heise.de/news/VirtualBox-7-2-8-Bugfixes-fuer-Linux-Wayland-und-Secure-Boot-11269431.html #Virtualisierung #virtualization
-
#Tails 7.7: Warnung vor abgelaufenen #SecureBoot-Zertifikaten | Security https://www.heise.de/news/Tails-7-7-Warnung-vor-abgelaufenen-Secure-Boot-Zertifikaten-11269936.html #Linux :tux: #Datenschutz #privacy
-
VirtualBox 7.2.8: Bug fixes for Linux, Wayland, and Secure Boot
VirtualBox 7.2.8 brings important bug fixes for Linux hosts, Wayland guests, and Secure Boot. 7.1.x also reaches its support end.
#IT #Linux #Oracle #SecureBoot #VirtualBox #Virtualisierung #Wayland #news
-
VirtualBox 7.2.8: Bugfixes für Linux, Wayland und Secure Boot
VirtualBox 7.2.8 bringt wichtige Bugfixes für Linux-Hosts, Wayland-Gäste und Secure Boot. Auch 7.1.x erreicht sein Support-Ende.
#IT #Linux #Oracle #SecureBoot #VirtualBox #Virtualisierung #Wayland #news
-
Canonical named Ubuntu 26.10 "Stonking Stingray" for October 15, 2026. The cycle proposes dropping btrfs, hfsplus, xfs, zfs from the signed GRUB bootloader used for Secure Boot, keeping only ext4, FAT, ISO9660, squashfs. Source language is "will probably remove", so it is a proposal. Every Ubuntu /boot on btrfs, xfs, or zfs now has a six-month clock. The people cutting the surface almost never pay for the migration.
-
We & the #UEFI consortium created #SecureBoot & #TPM to ensure a known-good, unmodified, HW-protected OS.
Now it also protects gamers against online cheaters... like in #Rust. 😁
✅ How to Turn On TPM & Secure Boot – Facepunch Studios
https://support.facepunchstudios.com/hc/en-us/articles/34396134943389-How-to-Turn-On-TPM-Secure-Boot
#Security -
CW: too much tags, yes im desperate
does anyone know how to setup TPM2 pin LUKS decryption in a non-systemd system?
#linux #artix #voidlinux #gentoo #openrc #tpm #secureboot #uefi #Encryption #security
-
Unification de l'installeur : Le projet va désormais utiliser l'installeur de #LMDE (le "live-installer") pour toutes ses versions, remplaçant ainsi #Ubiquity. Ce changement permet de mieux supporter l' #OEM, le #SecureBoot et #LVM / #LUKS.
Arrivée de "Alfa" (Mint 23) : Une version de développement nommée provisoirement "Alfa" est déjà sur les rails.
-
If you are interested in platform security topics like #SecureBoot or #TPM, we've registered a channel on #OFTC people are free to join.
ircs://irc.oftc.net:6697/#platformsecurity
Webirc: https://webchat.oftc.net/?channels=#platformsecurity
or through #Matrix over
-
#Paywall Golem erklärt: Secure-Boot-Zertifikate für Windows laufen im Juli/Oktober aus 🔐🗓️ — Schritt‑für‑Schritt‑Anleitung für Admins zum sicheren Austausch der Zertifikate. Jetzt handeln: https://www.golem.de/news/windows-so-werden-die-zertifikate-fuer-secure-boot-getauscht-2604-207349.html 🛠️📄 #SecureBoot #Windows11 #ITAdmin
-
#OldNewz #Reminder Expiration June 26, 2026
Heise reports Microsoft warns of a Secure Boot certificate refresh that could affect some servers and devices; admins should update firmware/OS and follow OEM guidance. Details: https://www.heise.de/en/news/Prepare-for-an-impact-Microsoft-warns-of-secure-boot-certificate-update-10462433.html 🔐⚙️ #CyberSecurity #InfoSec #Secureboot #UEFI #Linux
$ sudo apt install efitools
$ sudo efi-readvar -v KEKIf one sees "…Microsoft Corporation KEK CA 2011" Update your BIOS/UEFI/Firmware
-
#Paywall Holger Voges erklärt, wie Secure‑Boot‑Zertifikate vor dem Auslaufen (Juli/Oktober) ersetzt werden: Schritt‑für‑Schritt‑Update für Admins, damit Windows 11 sicher bleibt. 🔐🛠️ #SecureBoot #Windows11 #ITAdmin https://www.golem.de/news/windows-so-werden-die-zertifikate-fuer-secure-boot-getauscht-2604-207349.html
-
Microsoft Locks Out VeraCrypt, WireGuard Devs, Halting Windows Updates
#Microsoft #Windows #VeraCrypt #WireGuard #Encryption #OpenSource #Drivers #SecureBoot #Windows11 #BigTech
