And that if the attacker has admin and physical access to Windows they can just ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

SAI_Peregrinus on July 30, 2020 | parent | context | favorite | on: GRUB2 UEFI SecureBoot Vulnerability: 'BootHole'

And that if the attacker has admin and physical access to Windows they can just install GRUB from there, then exploit that to install a rootkit to persist their access.

usr1106 on July 30, 2020 [–]

Do you really need physical access for that?

Grub is not signed by Microsoft CA, only shims are. So the exploit is installing an old shim and a vulnerable grub.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact