- I think the Bitlocker "vuln" is a good reminder not to use vendor provided encryption for any sensitive data. https://github.com/Nightmare-Eclipse/YellowKey/ You load a specific file onto a flash drive, plug it into a Bitlocker encrypted computer, reboot it while holding a key combination, and it pops up a command prompt with full access to the encrypted volume. There's no way this isn't a backdoor.
by purpleidea
3 subcomments
- It's so obvious that many of the bugs being found are/were most likely M$ backdoors.
There doesn't seem to be any other plausible explanation. The reckoning needs to come and people need to stop using their products for good.
Would love a whistleblower to explain which part of the government or company forced it.
by __alexander
2 subcomments
- So weird that GitHub requires a login to view their BlueHammer repo.
https://github.com/Nightmare-Eclipse/BlueHammer
- Oh cool. My brother's old laptop is locked. Maybe this will help
by aussieguy1234
1 subcomments
- Could the Bitlocker vulnerability be a backdoor mandated by some government agency?
by NordStreamYacht
2 subcomments
- Laid off Microsoft researcher?
- Seems odd that someone is both capable of this and homeless. This stuff has decent value on the grey market
- Anyone remember the Samsung ssd issue with bitlocker from maybe like a decade or so ago where it was an empty encryption key or something
by ChrisArchitect
0 subcomment
- Related:
YellowKey Bitlocker Bypass Vulnerability
https://news.ycombinator.com/item?id=48114997
- i think so~
Hacker News