Sass, David2h ago

I get that I need to use PIN for #bitlocker to keep my #Windows secure, but it is certainly a huge inconvenience when I'm using my laptop docked with lid closed and stocked vertically like ALL THE TIME

Edit: I was wrong https://infosec.exchange/@sassdawe/116617037342486226

Sass, David (@[email protected])

@[email protected] actually I was wrong. New with another reboot I was presented with the pro-boot screen of #bitlocker on both external screens!

Infosec Exchange
Bobe'bot on security15h ago
Une faille zero day baptisée YellowKey permet de contourner BitLocker — et aucun correctif n'est prévu pour l'instant. BitLocker est souvent présenté comme le filet de sécurité ultime pour les données au repos. Ce type de bypass rappelle que le chiffrement de volume ne vaut que ce que vaut la chaîne de confiance qui l'entoure. #infosec #CVE #BitLocker
https://www.lemondeinformatique.fr/actualites/lire-pas-de-correctif-pour-la-faille-zero-day-yellowkey-contournant-bitlocker-100219.html
Pas de correctif pour la faille zero day YellowKey contournant BitLocker

Microsoft travaille sur un correctif pour juguler la vulnérabilité YellowKey permettant à des pirates de contourner la fonction de chiffrment...

Le monde informatique
Tom's Hardware Italia19h ago

🔐 YellowKey riaccende l’attenzione: BitLocker da solo non basta. Microsoft corre ai ripari, ma la sicurezza richiede più livelli e configurazioni solide. #Cybersecurity #BitLocker

🔗 https://www.tomshw.it/hardware/yellowkey-microsoft-mitigazioni-bitlocker

YellowKey, Microsoft corre ai ripari: BitLocker non basta da solo

Microsoft indica le prime mitigazioni per YellowKey: il bypass di BitLocker passa da WinRE e ora richiede interventi prima della patch.

Tom's Hardware
Kai und der Andere 🎗️21h ago
wie finde ich den #bitlocker Wiederherstellungsschlüssel heraus, wenn der Rechner mit vorinstalliertem Windows gekauft wurde?
The New Oil23h ago

#Microsoft shares mitigation for #YellowKey #Windows zero-day

https://www.bleepingcomputer.com/news/microsoft/microsoft-shares-mitigation-for-yellowkey-windows-zero-day/

#BitLocker #cybersecurity #FDE #encryption

Microsoft shares mitigation for YellowKey Windows zero-day

Microsoft has shared mitigations for YellowKey, a recently disclosed Windows BitLocker zero-day vulnerability that grants access to protected drives.

BleepingComputer
ThreatNoir1d ago

New ThreatNoir Cyber News short: The Key Under The Mat.

Bitlocker bypass via USB file + reboot. 27 seconds, no fluff.

Source breakdown: https://threatnoir.com

#infosec #bitlocker #cybersecurity

𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕1d ago

«Attackierte MS-Defender-Lücken und BitLocker-Schutzmaßnahmen:
Die CISA warnt vor Angriffen auf teils 18 Jahre alte Microsoft-Lücken. Patches schützen den Defender und Gegenmaßnahmen vor BitLocker-Lücke.»

Hach ja, Microsoft und ihre Sicherheit. Abgesehen davon, System- so wie Softwareupdates IMMER so schnell wie möglich einspielen aber zu viele glauben Updates sind nicht wirklich wichtig.

🔓 https://www.heise.de/news/Attackierte-MS-Defender-Luecken-und-BitLocker-Schutzmassnahmen-11301580.html

#microsift #bitlocker #MSDefender #cisa #patch #PatchNOW #itsicherheit #update

Attackierte MS-Defender-Lücken und BitLocker-Schutzmaßnahmen

Die CISA warnt vor Angriffen auf teils 18 Jahre alte Microsoft-Lücken. Patches schützen den Defender und Gegenmaßnahmen vor BitLocker-Lücke.

heise online
Sudo1d ago

🚨 New Episode Live: Is BitLocker a Backdoor?

A new zero-day, "YellowKey," allows attackers to bypass default Windows encryption instantly. The discoverer claims it looks like an intentional flaw in the recovery environment.

We dive into the evidence, the "bug vs. backdoor" debate, and the critical steps you must take to secure your drive right now.

Don't wait for a patch. Fix it yourself.

Listen now: ImpracticalPrivacy.com

#BitLocker #Privacy #InfoSec #CyberSecurity #OpenSource #microsoft

ZEN SecDB1d ago

🚨 CVE-2026-45585 (YellowKey)

Microsoft is aware of a security feature bypass vulnerability in Windows publicly referred to as "YellowKey". The proof of concept for this vulnerability has been made public violating coordinated vulnerability best practices.
We are issuing this CVE to provide mitigation guidance that can be implemented to protect against this vulnerability until the security update is made available.

ℹ️ Additional info on ZEN SecDB https://secdb.nttzen.cloud/cve/detail/CVE-2026-45585

#nttdata #zen #secdb #infosec
#yellowkey #microsoft #bitlocker #cve202645585

Sudo1d ago

Option 2: Mastodon
🚨 New Episode Live: YellowKey

A new zero-day called "YellowKey" lets attackers bypass default BitLocker encryption with a simple USB trick. Microsoft hasn't patched it yet.

We break down the exploit, the "backdoor" accusations, and exactly how to secure your drive today.

Don't trust the default. Listen now: ImpracticalPrivacy.com

#BitLocker #Privacy #InfoSec #CyberSecurity #OpenSource #YellowKey #Microsoft #Surveillance #Windows #Windows11 #OpSec #Encryption