The Secure Boot refresh is one of the largest coordinated security maintenance efforts across the Windows ecosystem, Microsoft said. Update those PCs soon.

DR (DZone Research) offers insights into software development trends, industry surveys, and technology adoption patterns, providing reports, whitepapers, and analyst insights to help businesses make informed decisions and stay competitive in the ever-evolving tech landscape. By exploring DR's curated content, developers can gain insights into emerging technologies, developer preferences, and industry best practices for building innovative and market-leading software solutions. Whether you're a startup founder, product manager, or tech executive, DR offers resources to guide your strategic planning and drive business success.

Dark Reading

Microsoft's original 2011 UEFI Secure Boot certificates for Windows are expiring on June 24, 2026. All Windows PCs manufactured before 2024 need to be updated to the 2023 certificates to continue receiving security updates and maintain protection against UEFI bootkits like BlackLotus. Devices with automatic updates are likely already updated, but enterprise environments with staged patching may not be. Windows 10 PCs outside Microsoft's Extended Security Update program won't automatically receive the new certificates and will gradually lose Secure Boot functionality. Microsoft has released a new indicator in the Windows Security app to help users check certificate status, and will add notifications next month. IT admins are urged to consult Microsoft's playbook, inventory affected systems, and apply updates before the deadline.

Microsoft's Original Windows Secure Boot Certificate Is Expiring