Skip to main content

MICROSOFT GOLDEN BACKDOOR KEYS - BECOMES THERE BIGGEST MISTAKE

MICROSOFT GOLDEN BACKDOOR KEYS - BECOMES THERE BIGGEST MISTAKE

News compressed : Microsoft update leaked there golden keys that unlock devices sealed by Secure Boot ( Unified Extensible Firmware Interface). It was revealed by two researchers on there blog post and it's impossible for microsoft to undo this changes


Microsoft is an american multinational technology company. It was founded on April 4, 1975 mostly famous for there world class operating system Windows. Microsoft routinely released windows update on second tuesday.

 Windows updates are the service offered by Microsoft, provides updates for Windows components. Microsoft every time release their windows update and makes some changes on it, but this time it's becomes there biggest mistake

 Actually, microsoft accidentally leaked their backdoor golden keys with their windows update that can unlocked windows-powered tablets, phones and other devices that sealed with secure boot(Unified Extensible Firmware Interface) feature.

 These golden keys have power to unlock devices protected by UEFI or secure boot feature. Secure boot feature prevent you to run any microsoft alternative operating system in your device and also helps to secure your device from malware. When secure boot is disabled you can able to boot with microsoft disapproved operating system.

 This flaw is discovered by two security researcher MY123 and Slipstream on there blog post. That helps to install any operating system on device having secure boot. According to it's impossible for \ microsoft to undo these keys.

Microsoft says about Golden keys

 According to the pair of researchers, they contacted Microsoft's security team around March to say they had found the debug-mode policy. Initially, we're told, Redmond declined to follow up the find, then decided about a month later it was a security issue and paid out a bounty reward. 

  In July, Microsoft pushed out security patch MS16-094 in an attempt to stop people unlocking their Secure Boot-sealed devices. That added a bunch of policies, including the debug-mode policy, to a revocation list held in the firmware that's checked during startup by the Windows boot manager. That didn't fully kill off the magic policy, however. The revocation list is checked by the boot manager after policies are loaded. By the point in the startup sequence, it's too late. However, a Microsoft tool used to provision the policy into the firmware does check the revocation list, and thus refuses to accept the magic policy when you try to install it, so MS16-094 acts merely as a minor roadblock. 

 This week, Microsoft issued patch MS16-100, which revokes more stuff but doesn't affect the golden policy, we're told. A third patch is due to arrive next month as a follow-up. If you haven't installed the July fix yet, you can use this script to provision the unlock policy onto your ARM-powered Windows RT tablet. You must be an administrator to update the firmware. After that, you can set about trying to boot a non-Windows OS or any other self-signed EFI binary. We're told by one brave tester that this policy installation method worked on a Windows RT tab that was not patched for MS16-094.

  The aforementioned script works by running a Microsoft-provided EFI binary during the next reboot that inserts the debug-mode policy into storage space on the motherboard that only the firmware and boot manager are allowed to access. The script's ZIP archive contains the leaked magic policy. If you have installed the July update, the above script will fail because the updated revocation list will be checked by Microsoft's installation tool and the magic policy will be rejected before it can be provisioned. In about a week's time, MY123 is expected to release a package that will work around this and install the debug-mode policy on all devices, including Windows RT tablets. People are particularly keen to unlock their ARM-powered Surface fondleslabs and install a new operating system because Microsoft has all but abandoned the platform. Windows RT is essentially Windows 8.x ported to 32-bit ARMv7-compatible processors, and Microsoft has stopped developing it. Mainstream support for Surface RT tabs runs out in 2017 and Windows RT 8.1 in 2018. A policy similar to the leaked debug-mode policy can be used to unlock Windows Phone handsets, too, so alternative operating systems can be installed. A policy provision tool for Windows Phone is already available. We expect to hear more about that soon. This Secure Boot misstep also affects Windows PCs and servers, but it's not that big a deal for them because these machines are typically unlocked anyway. You can boot your unrestricted computer into its firmware settings, and switch off Secure Boot, or delete all the keys from its database to disable it, if you really want to. You don't need any debug-mode tricks to do that. In the unlikely event you're using a locked-down Secure Boot PC and you have admin rights on the box, and you want to boot something else, all the above is going to be of interest to you. If you're an IT admin who is relying on Secure Boot to prevent the loading of unsigned binaries and drivers – such as rootkits and bootkits – then all the above is going to worry you. FBI and golden keys
Labels:

Comments

Post a Comment

Popular posts from this blog

FACEBOOK PROVIDES EXPRESS WIFI SERVICE IN INDIA- AFTER FAILURE OF FREE WIFI INITIATIVE

Free wifi service was blocked by indian telecome regulators Facebook the biggest social media company recentley join initiative to provide free internet service in india. But their free internet service app was blocked by India's telecome regulators because it's violates the principle of neutrality , by this principle we means facebook are only providing access to only limited websites & services people have to pay if they want to use other services. Now they launch express wifi service in india. In expresse wifi a user need to purchase from there local service provider if they want to access the web Facebook offered this wifi services in 125 rural area with affordable prices. By this people can buy data packets from there nearest internet services provider in order to access internet. Now, Facebook has partnered with state-owned carrier Bharat Sanchar Nigam Ltd to increase its Express Wi-Fi program into a commercial launch, rolling out 125 rural ...
1 comment
Read more

Apple Is Using Foxconn to Create An "all glass" in iPhone 7

All glass iphone 7 News Compressed : iphone leaked revealed apple is going to used all glass for iphone 7 Nikkei says its source revealed “Foxconn has been trying glass chassis since last year  Apple iphone is one of the world famous smart phone.It's lover around the world is always waiting for there new iphone version,  source said that iphone 7 will going to launch on 2017 it's to long waiting time for it's fan because they want's to know what is special in new iphone 7 what are there feature and look A Japanese website Nikkei reports that :  Apple is using Foxconn to create an ‘all glass’ iPhone chassis in what will be the most radical redesign of the smartphone line to date. Unfortunately, however, that redesign will only arrive in 2017 and not with September’s’ iPhone 7 Apple is using these foxconn since last year on there new iphone 7 so what's makes that all glass design on iphone 7 to special we will find this out when it's release...
Post a Comment
Read more

Snap-chat launched Spectacles - Sunglasses With Camera

S napchat today is most widley used image messaging application created by  26-year-old creator Evan Spiegel and his team. SNAPCHAT Snapchat is actually a image message fun application from which you can take a photo or video of something then add a caption or doodle or lens graphic over top then share it with friends. This actually sends photo and video with friends called-- snaps the snap you share can with friend can only view for 10 sec than snaps  disappeared. Spectacles snapchat has announced their first gadget on friday called spectacles ------ A sunglass with camera The price of spectacles can go later this year at $130 (£100). The spectacles can record video upto 30 sec only the light on the front of glass indicates the people that spectacles are recording Footage will be recorded in a new, circular format which can be viewed in any orientation, the company said. The battery on the device will las...
Post a Comment
Read more