Microsoft has finally addressed a significant security vulnerability that left Windows 11 open to malware attacks during the boot process. The company patched CVE-2024-7344, a serious flaw in UEFI Secure Boot, after a seven-month delay. The issue allowed hackers to run malware during this critical system phase, exploiting a flaw in how third-party firmware utilities handled secure UEFI boot processes.
The vulnerability stemmed from a custom executable loader used by some vendors’ system utilities, which bypassed Microsoft’s security checks and allowed unsigned binaries to be executed. This created an opening for sophisticated attackers to piggyback malware onto legitimate utilities.
Microsoft has revoked digital certificates for affected firmware versions and issued updates from all seven impacted vendors: Howyar Technologies, Greenware, Radix, Sanfong, WASAY, CES, and SignalComputer. The update resolves the issue and users are strongly advised to apply it immediately.
Source: https://www.techspot.com/news/106411-microsoft-finally-patches-serious-uefi-secure-boot-flaw.html