Very interesting shim vuln allowing for secure boot bypass in most if not all... - Infosec

JulianOliver, 4 months ago

Very interesting shim vuln allowing for secure boot bypass in most if not all GNU/Linux distros. In most cases, would need adversary-in-the-middle (datacenter unfriendly), other local attack or existing vuln to exploit.

In any case, bc patching it could plausibly break secure boot in some cases, fixing in the wild has quite some challenges.

#infosec #linux

https://arstechnica.com/security/2024/02/critical-vulnerability-affecting-most-linux-distros-allows-for-bootkits/

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

+ alcinnz, rysiek

Image

Image alternative text

Rairii, 4 months ago

@JulianOliver can't wait for dbx to be 100% full.

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Federation

Status:

On | Off

Instances:

/m/infosec

Threads (1248)

Microblog (3131)

All Content

People

Magazines

Collections

Thread

JulianOliver

@JulianOliver@mastodon.social

Added: 4 months ago
Online: -
Boosts: 2

Magazine

Infosec

@infosec@kbin.social

This magazine is dedicated to discussions on cybersecurity, network security, and information security.

Whether you are an IT professional, a cybersecurity enthusiast, or simply concerned about online privacy and security, this is the place for you.

Here you can share your knowledge, ask for advice, and discuss the latest news and trends in the world of cybersecurity. From encryption and malware to risk management and digital forensics, this category covers a wide range of topics related to information security.

Join the conversation and let's work together to keep our online world safe and secure.

Created: 1 year ago
Owner: ernest
Subscribers: 3673
Online: -

Moderators

ernest

Active people

#tech #infosec #heldesk #photos #memes #cloud #sysadmin #images #funny

4 days ago to tech

China creates $47 billion chiptech investment fund https://go.theregister.com/feed/www.theregister.com/2024/05/28/china_semiconductor_big_fund_3/?utm_source=dlvr.it&utm_medium=mastodon...

4 days ago to Cybersecurity

Nach Regierung und Telekom: United Internet steigt aus De-Mail aus...

5 days ago to Cybersecurity

Cyber threats to European elections: beyond the headlines...

4 days ago to Cybersecurity

Related threads

University of Michigan employee, student data stolen in cyberattack

7 months ago to sysadmin

David Attenborough narrates a cyber attack

7 months ago to InfoSecMemes

Pretender: Your MitM sidekick for relaying attacks

11 months ago to toolsec

Add comment