BitLocker on Windows 11 defeated with a USB stick

If you’ve been relying on BitLocker to protect your sensitive data it’s time to invest in something else. A zero day exploit called YellowKey allows anyone with access to the machine to boot into a recovery environment and copy a folder to the drive and suddenly bypass all that encryption-needing-a-password nonsense. No recovery key required. ARS Technical has an in-depth review of the exploit and enough information to set you on the right track if you’ve got a system sitting around that the BitLocker key got lost and the files became inaccessible. I’d suspect your Window to easily break old bitlocker versions will end sometime next month, but any ancient computers should be accessible. If you’re a journalist in a country where your life depends on BitLocker keeping the government out, now might be a really good time to run. Also if you always suspected that Windows had a government backdoor… well… yup. [Ars Technica] BitLocker on Windows 11 defeated with a USB stick by Paul E King…