Mystery Microsoft bug leaker keeps the zero-days coming

I think the Bitlocker "vuln" is a good reminder not to use vendor provided encryption for any sensitive data. https://github.com/Nightmare-Eclipse/YellowKey/ You load a specific file onto a flash drive, plug it into a Bitlocker encrypted computer, reboot it while holding a key combination, and it pops up a command prompt with full access to the encrypted volume. There's no way this isn't a backdoor.

It's so obvious that many of the bugs being found are/were most likely M$ backdoors.

There doesn't seem to be any other plausible explanation. The reckoning needs to come and people need to stop using their products for good.

Would love a whistleblower to explain which part of the government or company forced it.

Oh cool. My brother's old laptop is locked. Maybe this will help

So weird that GitHub requires a login to view their BlueHammer repo.

https://github.com/Nightmare-Eclipse/BlueHammer

Anyone remember the Samsung ssd issue with bitlocker from maybe like a decade or so ago where it was an empty encryption key or something

Laid off Microsoft researcher?

Could the Bitlocker vulnerability be a backdoor mandated by some government agency?

Related:

YellowKey Bitlocker Bypass Vulnerability

https://news.ycombinator.com/item?id=48114997

i think so~