A Decade-Long Security Flaw in Microsoft’s Secure Boot System
Microsoft’s Secure Boot system, designed to protect Windows and Linux systems from malicious programs, contained a vulnerability for at least 13 years, according to research by ESET. The flaw, present since at least 2013, allowed attackers to bypass protections using certificates that remained valid, leaving systems running Windows or Linux exposed to persistent threats.
The Vulnerability Exposed
Secure Boot, introduced by Microsoft in 2011, relies on certificates to verify software during the boot process. ESET’s analysis revealed that about ten certificates remained valid in Microsoft’s system, enabling attackers to install malware that could resist reinstallation of the operating system or even a change of storage media.
According to Ars Technica, the flaw allowed malware to execute before the operating system started. Distributions like Red Hat and OpenSuse, which also used Secure Boot for bootloader security, were similarly affected.
Why It Went Unaddressed for Years
It is difficult to know exactly why Microsoft, which almost alone handles the security of this system, did not revoke the vulnerable certificates since 2013. This may be related to the complexity of the system, which is difficult to modify without destabilizing a large part of the system behind it.
The certificates remained active until the update last June, when Microsoft revoked them.
Impact on Windows and Linux Users
The vulnerability affected systems running Windows or Linux. Linux users using distributions with Secure Boot support were also affected.

Distributions such as Red Hat and OpenSuse, which used Secure Boot for bootloader security, faced similar risks.
The Revocation and Its Limitations
Microsoft’s update in June revoked the problematic certificates.
What This Means for Cybersecurity
The Secure Boot flaw highlights the risks of the system’s complexity. Experts recommend installing the latest updates as quickly as possible for both Windows and Linux users who use distributions with Secure Boot support.
FAQ
How long was the vulnerability present?
The flaw existed since at least 2013. Microsoft revoked the certificates in June.
What should users do?
Install the latest updates as quickly as possible.
Can Linux systems be affected?
Yes. Distributions like Red Hat and openSUSE used Secure Boot for bootloader security, making them vulnerable to the same attacks.
Did You Know?
Secure Boot was designed to protect Windows and Linux systems from malicious programs, but this flaw exposed a gap in its implementation.
Pro Tips
Install the latest updates for your operating system immediately.
Call to Action
Keep reading
