This question is related but only partialy answers my question.
I know firmware (most notably UEFI firmware) rootkits or bootkits are rare and possiblity to introduce one into system is very low, but in practice if such thing happens:
- to be infected by firmware rootkit without knowing it, is impossible with secure boot enabled?
- does secure boot protects against GPT bootkits (if such malware even exist as oposed to well known MBR bootkits)?
- is there known scenario that could bypass secure boot when speaking about bootkits and rootkits?