this post was submitted on 13 May 2026
568 points (99.7% liked)

Technology

84583 readers
4301 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
568
Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor (www.tomshardware.com)
submitted 13 hours ago by throws_lemy@lemmy.nz to c/technology@lemmy.world
71 comments fedilink hide all child comments
 

YellowKey reportedly works in Windows 11, Windows Server 2022 and 2025, but not in Windows 10.

you are viewing a single comment's thread
view the rest of the comments
[–] ChristerMLB@piefed.social 26 points 12 hours ago (2 children)

That makes me think of when TrueCrypt suddenly stopped being developed: https://www.techmonitor.ai/technology/cybersecurity/is-truecrypt-a-victim-of-hacking-4280447?cf-view

[–] SnotFlickerman@lemmy.blahaj.zone 21 points 11 hours ago

Except Microsoft doesn't have the respectability to discontinue a clearly broken product now that they've baked it into ever installaion of Windows 11 by default

[–] jqubed@lemmy.world 17 points 11 hours ago (3 children)

As in you think they were pressured into stopping development so people would switch over to BitLocker, which now appears to have a backdoor put in by Microsoft or at least one of the developers, presumably at the behest of a government?

[–] adarza@lemmy.ca 15 points 10 hours ago (1 children)

there's a backdoor built right into bitlocker in the form of 'recovery keys'--and for most users, microsoft knows what they are.

[–] mic_check_one_two@lemmy.dbzer0.com 7 points 7 hours ago

and for most users, microsoft knows what they are.

This is notable specifically because Microsoft has been compelled by courts to turn over those keys before.

I don’t blame Microsoft for complying with legal court orders, but I 100% blame them for building systems that allow them to access users’ data (including the keys) in the first place. If they used proper E2EE, they wouldn’t be able to access your keys at all. But that would prevent them from gobbling up all of your private data to sell. And the fifth amendment doesn’t protect third parties. So if the FBI confiscates your PC and you clam up, the feds can just compel Microsoft to give them your keys instead.

[–] homesweethomeMrL@lemmy.world 7 points 11 hours ago

Yeah its Not Safe As.

Also your delivery from Flowers By Irene is waiting outside

[–] ChristerMLB@piefed.social 1 points 9 hours ago

The thought did cross my mind, yeah. I don't think it's quite sufficient evidence to make such a big conclusion, but both of these seem so conspicuous