Secure Boot Allowed Key Exchange Key (KEK) Update: What is it?

The Key Exchange Key (KEK) acts as an authority that allows Microsoft to update the other databases, like the DB and DBX that tell your computer which bootloaders are safe.
ExtremeTech

Secure Boot Passcode on Many Popular PCs Was Leaked Years Ago

A cyber security research firm has published a shocking report outlining how the Secure Boot feature found on UEFI motherboards was compromised almost two years ago due to its passcode being leaked.
ExtremeTech

Microsoft leaks Secure Boot credentials, shows why backdoor 'golden keys' can't work

Over the past year, there's been a raging debate over what kinds of encryption companies should use and whether they should retain the ability to crack end-user devices when ordered to do so by the ...
Dark Reading

Millions of Devices Vulnerable to 'PKFail' Secure Boot Bypass Issue

Attackers can bypass the Secure Boot process on millions of Intel and ARM microprocessor-based computing systems from multiple vendors, because they all share a previously leaked cryptographic key ...
Guru3D.com

Microsoft begins Secure Boot certificate refresh before late June 2026

Microsoft is rolling out refreshed Secure Boot certificates across the Windows ecosystem, aiming to replace the original trust anchors that have been in use since 2011. Secure Boot is enforced by UEFI ...
Neowin

Microsoft lists a reason why TPM, Secure Boot are required on Windows 11 in 2024-2025

Microsoft added a reason why features like TPM and Secure Boot are important on the latest version of Windows 11. Microsoft, time and time again, has explained why features like TPM (Trusted Platform ...