Security researchers have discovered that Microsoft's Secure Boot protection has been vulnerable for approximately ten years due to the company's failure to revoke outdated software shims. The overlooked shims have made it trivially simple for attackers to bypass Secure Boot protections, a critical mechanism designed to prevent unauthorized code execution during system startup.
Why it matters: This vulnerability affects the foundational security architecture of Windows systems globally, representing a significant gap in endpoint protection that enterprises and individual users rely on to prevent low-level malware infections.