Dark Reading

Trusted Apps Sneak a Bug Into the UEFI Boot Process

A vulnerability in trusted system recovery programs could allow privileged attackers to inject malware directly into the system startup process in Unified Extensible Firmware Interface (UEFI) devices.
IT World Canada

IT admins being warned of vulnerability in Secure Boot process in Linux, Windows

IT administrators are being warned to watch for patches from Microsoft, Linux distributors, and major software makers to patch a serious buffer flow vulnerability in the bootloader process of ...