A couple of months ago, we reported on the PKfail vulnerability in Secure Boot — a security issue that stems from hardware manufacturers shipping devices with known compromised software. After digging deeper, the original security researchers have discovered that it’s a much bigger problem than even they had initially guessed. In case you missed the original story, here’s a quick summary: The code that gets you past Secure Boot encryption (so you can load up software in a pre-boot environment) was leaked on an open repository back in 2022. Despite that being a known issue, manufacturers contin…