A Critical Deadline Is Approaching for Windows and Linux Security

The report warns that expiring Microsoft-signed Secure Boot certificates present a risk to Windows and Linux systems by potentially weakening firmware verification, and reviews the history and threat posed by UEFI/EFI bootkits — persistent malware that loads before the OS. It summarizes early bootkit research, notable proofs-of-concept, and the first known real-world UEFI compromise (LoJax) attributed to a Kremlin-linked APT, emphasizing the difficulty of detecting and removing firmware-level infections.