Secure Boot bypass risk threatens nearly 200,000 Linux Framework laptops

Welcome • User Guide
ToS • Privacy • Canary
Donate • Bugs • License

©2025 Poal.co

314

•

Secure Boot bypass risk threatens nearly 200,000 Linux Framework laptops (www.bleepingcomputer.com)

From the post:

>Around 200,000 Linux computer systems from American computer maker Framework were shipped with signed UEFI shell components that could be exploited to bypass Secure Boot protections. An attacker could take advantage to load bootkits (e.g. BlackLotus, HybridPetya, and Bootkitty) that can evade OS-level security controls and persist across OS re-installs.

Wow, I didn't realize they had shipped/built at that volume yet. Not bad for being a "new guy". It's not really fair to call them "Linux" laptops since they are able to run Windows too so there is that... Archive: https://archive.today/3E2Bs From the post: >>Around 200,000 Linux computer systems from American computer maker Framework were shipped with signed UEFI shell components that could be exploited to bypass Secure Boot protections. An attacker could take advantage to load bootkits (e.g. BlackLotus, HybridPetya, and Bootkitty) that can evade OS-level security controls and persist across OS re-installs.

(post is archived)

[–] • 1 pt

I turn off Secure Boot and the TPM chip on my stuff. Both are easily compromisable by anyone with a couple of scripts. TPM stores passwords. No reason to store anything in either. People need to keep their shit patched and not rely on the hardware vendor.

link

[–] • 1 pt

Their laptop is supposed to be really good. I mean it should be for like $1700.

link