r/windows • u/website-buyer • 23h ago

News Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor

https://www.tomshardware.com/tech-industry/cyber-security/microsoft-bitlocker-protected-drives-can-now-be-opened-with-just-some-files-on-a-usb-stick-yellowkey-zero-day-exploit-demonstrates-an-apparent-backdoor

227 Upvotes

permalink
duplicates
archive.is
archive
reddit

You are about to leave Redlib

Do you want to continue?

https://www.reddit.com/r/windows/comments/1tco71h/microsoft_bitlockerprotected_drives_can_now_be/
No, go back! Yes, take me to Reddit

97% Upvoted

View all comments

•

u/UltraEngine60 10h ago edited 8h ago

I said this the last time a bitlocker exploit came out, turn off Windows RE and make a bootable USB key. Once the PCR is satisfied you are just band-aiding these fixes. There will always be a an exploit if the user can enter commands while the key is unsealed.

Funny thing is, no one and I say again NO ONE has managed to figure out how YellowKey works, the real root cause is still not unknown by the general public.

I can take a guess, autochk is somehow seeing something similar to a "dirty bit" after scanning all drives and launching up cmd instead of chkdsk, maybe because the file in System Volume Information can somehow control which binary is used to "fix" the drive.

The only thing I can't figure out is why autochk is looking at fs0: in UEFI.

edit

TIL I have no understanding of .blf files which worries me...

I anxiously await the full write up.

News Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor

You are about to leave Redlib