Microsoft's Bitlocker & TPM encryption combo defeated with a $10 Raspberry Pi and a bit of braininess
www.pcgamer.com
Your laptop probably isn't as secure as you thought.

Microsoft’s Bitlocker & TPM encryption combo defeated with a $10 Raspberry Pi::The point of Microsoft’s Bitlocker security feature is to protect personal data stored locally on devices and particularly when those devices are lost or otherwise physically compromised. With Bi

    • n2burns@lemmy.caEnglish
      24·
      5 months ago

      Isn’t the whole point of BitLocker protection from direct access? When a computer is turned off, encryption should keep the data safe. Also when a computer is turned off, basically no remote vector is going to work. AFAIK, when the computer is on, the drive is mounted and BitLocker provides no additional protection over an unencrypted drive.

        • ryannathans@aussie.zoneEnglish
          2·
          5 months ago

          Veracrypt drive encryption does not have the same problem, it would be secure even with physical access

            • ryannathans@aussie.zoneEnglish
              21·
              5 months ago

              Yeah, it’s safe because of no TPM usage. You can boot from an encrypted drive, it’ll prompt for the key instead of auto loading from vulnerable hardware

              • Natanael@slrpnk.netEnglish
                3·
                5 months ago

                Bitlocker supports the same usecase, but everybody wants that automatic boot feature so…

                It also lets you store a secondary key on a server and require the computer to be on trusted networks to be able to retrieve it to boot, but I’ve never ever heard of anybody using that

    • Godort@lemm.eeEnglish
      11·
      5 months ago

      Correct. However, if you have a way to run a PowerShell command as an administrator, you can run a single cmdlet to get access to the bitlocker recovery key.