I think I've ranted about this in HN before, but UEFI is so pointlessly complex. Modern OSes don't rely on the BIOS for basically anything. When choosing the successor to the old PC BIOS we could have made something extremely minimal.<p>Instead UEFI goes hard in the opposite direction. It's basically a full blown operating system with all the attendant complexity and, unsurprisingly, vulnerability surface.
Hopefully this will spur more research and visibility and unfortunately active exploits, but that would finally put pressure on oems to secure their firmwares. Or break up the damn covert cabal that’s the 3 major bios producers
I had a chuckle when I saw "Challenge 1: Singing Binaries" [0]<p>[0] <a href="https://github.com/hacking-support/DVUEFI/tree/main/docs/2-secureboot">https://github.com/hacking-support/DVUEFI/tree/main/docs/2-s...</a>