UMVA has learned that a mysterious new folder, named "SecureBoot," has been appearing on some Windows 11 systems after installing the recent May update (KB5089549), which has been causing installation issues on certain machines.
This enigmatic folder is located in the Windows system directory, leaving many users wondering about its purpose. However, for those familiar with the upcoming expiration of Windows Secure Boot certificates, this development may hold significant implications.
According to information obtained by UMVA, these certificates are set to expire next month, and if not updated, will render systems vulnerable to malware and hacks. Fortunately, Microsoft has been proactively rolling out new certificates to machines via Windows Update, ensuring that users who keep their systems up-to-date will be safeguarded.
UMVA can exclusively reveal that the new SecureBoot folder contains example scripts designed for organizations with IT professionals who manage updates across their device fleet. These scripts enable the detection of Secure Boot certificate update status and facilitate automated deployment via a secure rollout mechanism in an Active Directory environment.
In essence, Microsoft has provided a valuable resource for company IT admins to effortlessly check and push Secure Boot certificate updates across all machines on their network. However, for home Windows users, the folder's presence doesn't necessitate any immediate action.
Sources have confirmed to UMVA that deleting the SecureBoot folder is not recommended, as it may cause problems with future Windows updates. If the Windows Update process searches for the folder and fails to find it, users may encounter unexpected error messages, underlining the importance of leaving the folder intact.