Lee Duna@lemmy.nz to Technology@lemmy.worldEnglish · 2 months agoMicrosoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoorwww.tomshardware.comexternal-linkmessage-square63linkfedilinkarrow-up112arrow-down10file-text
arrow-up112arrow-down1external-linkMicrosoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoorwww.tomshardware.comLee Duna@lemmy.nz to Technology@lemmy.worldEnglish · 2 months agomessage-square63linkfedilinkfile-text
minus-squareCornballer@lemmy.ziplinkfedilinkEnglisharrow-up2·2 months agoSomebody on twitter “reverse engineered” the exploit. Apparently ms shipped debug code in production. At least it’s not called Backdoor_FBI outright. How it works: Recovery tools look for a config file called RecoverySimulation.ini on the OS drive If Active=Yes, it enables “test mode” for the recovery tools Test mode unlocks your BitLocker drive but a flag called FailRelock tells it to skip relocking cmd.exe spawns with full access to your “encrypted” drive
minus-squarejabberwock@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up1·2 months ago“Ah yes, but think about how much faster they shipped that code with Copilot doing all the heavy lifting.” Some Microsoft exec, probably
Somebody on twitter “reverse engineered” the exploit. Apparently ms shipped debug code in production. At least it’s not called Backdoor_FBI outright.
“Ah yes, but think about how much faster they shipped that code with Copilot doing all the heavy lifting.”