#bitlocker-bypass

[ follow ]
#zero-day-exploits #windows-11 #physical-access-attacks #tpmtrusted-platform-module #windows-zero-day #winre
fromArs Technica
4 days ago

Zero-day exploit completely defeats default Windows 11 BitLocker protections

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker protections and gain complete access to an encrypted drive within seconds. The exploit, named YellowKey, was published earlier this week by a researcher who goes by the alias Nightmare-Eclipse. It reliably bypasses default Windows 11 deployments of BitLocker, the full-volume encryption protection Microsoft provides to make disk contents off-limits to anyone without the decryption key, which is stored in a secured piece of hardware known as a trusted platform module (TPM).
Information security
Information security
fromThe Hacker News
4 days ago

Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation

YellowKey enables a BitLocker bypass in WinRE by using crafted FsTx files to trigger a shell, even when TPM+PIN is enabled.
Information security
fromtheregister
5 days ago

Mystery Microsoft bug leaker keeps the zero-days coming

YellowKey enables attackers with physical access to bypass BitLocker and gain unrestricted shell access, turning stolen laptops into potential breach events.
[ Load more ]