This Black Hat conference talk explores the concept of "Windows Downdate" - downgrade attacks that force software to revert to older, vulnerable versions. Learn how security researcher Alon Leviev from SafeBreach investigates whether critical Windows components beyond Secure Boot are vulnerable to downgrade attacks. The 34-minute presentation builds on the context of the 2023 BlackLotus UEFI bootkit that downgraded Windows boot manager to bypass Secure Boot, examining potential new attack vectors despite Microsoft's mitigations. Discover insights into Windows update mechanisms and their potential security implications for system integrity.
Windows Downdate: Downgrade Attacks Using Windows Updates
Overview
Syllabus
Windows Downdate: Downgrade Attacks Using Windows Updates
Taught by
Black Hat
Related Courses
-
Windows Downdate: Downgrade Attacks Using Windows Updates
-
How to Stop Man-in-the-Middle and Downgrade Attacks in Your Apps
-
Execution with Unicorn
-
Introduction to Personal Digital Security
-
Performing a Microsoft Windows 10 Installation
-
The 9 Lives of Bleichenbacher's CAT - New Cache Attacks on TLS Implementations
