@encore Also, it isn't a UEFI attack. Or rather, isn't a rootkit. Look what @marcan wrote:
https://social.treehouse.systems/@marcan/113561803290693406
https://social.treehouse.systems/@marcan/113560945800582652
Just some dumb EFI application that you can easily remove.
NOTE: Libreboot doesn't implement SecureBoot. It has a *much* better security model:
https://libreboot.org/docs/linux/grub_hardening.html
^ GRUB in flash so you harden the flash, and GPG-check the Linux kernel at boot, and lock the flash.
Libreboot has UEFI support for the memes(and BSD). I recommend GRUB if booting Linux.