Ars Technica

Microsoft will take nearly a year to finish patching new 0-day Secure Boot bug

Earlier this week, Microsoft released a patch to fix a Secure Boot bypass bug used by the BlackLotus bootkit we reported on in March. The original vulnerability, CVE-2022-21894, was patched in January ...