Summary: Microsoft has introduced a PowerShell script to assist Windows users and administrators in updating bootable media with the new “Windows UEFI CA 2023” certificate, addressing issues related to the BlackLotus UEFI bootkit. This measure precedes the full enforcement of mitigations against BlackLotus, which could disrupt the boot process if not properly managed. The PowerShell script is intended for safe, incremental adoption of the necessary security updates, enhancing protection against potential bootkit threats.
Affected: Windows operating systems and users
Keypoints :
- New PowerShell script helps update bootable media to use the “Windows UEFI CA 2023” certificate.
- BlackLotus bootkit can bypass Secure Boot and compromise system integrity, leading to potential malware deployment.
- Administrators are advised to test the update process prior to the full enforcement of security fixes, expected by the end of 2026.