Researchers found BlackLotus uses year old vulnerability and can run even on fully up-to-date Windows 11 systems with UEFI Secure Boot enabled.

Want Windows 11 but have an unsupported computer? Here's how to install Windows 11 even if your PC doesn't meet the minimum requirements.

Security researchers uncovered a flaw in Windows 11 that allows attackers to disable Secure Boot using Microsoft-signed tools, requiring manual updates to protect against bootkits.

All UEFI systems with Microsoft third-party UEFI signing enabled are affected (Windows 11 Secured-core PCs should have this option disabled by default).

However, attackers nevertheless found a way. Secure Boot was defeated to inject boot-level payloads by exploiting a vulnerability that Microsoft patched back in Jan. 2022, namely CVE-2022-21894.

Designated as CVE-2025-3052, the Secure Boot bypass flaw is a serious one, according to Binarly security researcher Alex Matrosov, who discovered the vulnerability.

If your computer is older than seven years, investing in a new PC may be the safer long-term choice. A basic, Windows 11-ready laptop in South Africa starts around R7,000 – R10,000, while a decent ...

Microsoft will take nearly a year to finish patching new 0-day Secure Boot bug Fix will eventually render all kinds of older Windows boot media unbootable.