Updating secure boot is crucial to keeping systems secure and working properly
New security features are great, but it’s inevitable that bad actors will eventually find ways around even the most novel of protections. Keeping up with attackers may mean adjusting, changing, redeploying, or, in the case of secure boot, dealing with the update phases of deployment, evaluation, and ultimately enforcement.
Starting on May 9, 2023, and more recently in the July 9, 2024 security releases, and documented in KB5025885, Microsoft has introduced protections against attacks used by the BlackLotus UEFI bootkit to bypass secure boot protections, features designed to prevent malicious software being loaded when a computer starts.
Here are some actions that are crucial to ensuring the security and proper functioning of your systems.