CSOonline

Microsoft’s AI tool catches critical GRUB2, U-boot bootloader flaws

Microsoft’s Threat Intelligence team has leveraged its AI-driven Security Copilot tool to identify 20 critical vulnerabilities in widely used open-source bootloaders — GRUB2, U-Boot, and Barebox.
Bleeping Computer

U-Boot's Trusted Boot Validation Bypassed

Memory handling issues in U-Boot open-source bootloader for embedded devices make possible multiple exploitation techniques that lead to arbitrary code execution. U-Boot, short for the Universal Boot ...
Bleeping Computer

Microsoft blocks UEFI bootloaders enabling Windows Secure Boot bypass

Some signed third-party bootloaders for the Unified Extensible Firmware Interface (UEFI) could allow attackers to execute unauthorized code in an early stage of the boot process, before the operating ...