"Doh! What My Encrypted Drive Can Be Unlocked By Anyone?" Today Bill Buchanan disclosed how an empty #password can be used to bypass hardware #encryption on major #SSDs, rendering useless strategies like full-disk encryption, as cornered by #Microsoft #BitLocker:
Notices tagged with bitlocker
-
André E. Veltstra (aeveltstra@mastodon.social)'s status on Tuesday, 06-Nov-2018 00:51:15 UTC André E. Veltstra -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1@nu.federati.net)'s status on Wednesday, 19-Sep-2018 11:27:38 UTC LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} One of the other folks here said that since I’ve been working with so many of the #SSD failure / #BitLocker cases, I’m the on-site SME (subject matter expert). Pretty surprising, actually. We’re getting the mushroom treatment from HQ-IT, so it feels like I’m fumbling in the dark. -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1@nu.federati.net)'s status on Tuesday, 18-Sep-2018 19:21:40 UTC LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} More failed SSDs. This is happening so frequently that I’m wondering whether this is a #BitLocker issue rather than a procurement issue.
I mean, there are plenty of procurement issues in $EMPLOYER already. The quality of this hardware is about the level of sub $200 laptops. It just seems that the SSD failure rate is higher than almost any other component. -
LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} (lnxw48a1@nu.federati.net)'s status on Thursday, 17-May-2018 13:18:04 UTC LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} Every day, we get people whose systems are sufficiently changed by #Windows updates and the agency's constant configuration change pushes that #Bitlocker decides to deny access to the drive. It doesn't make me confident in the stability of #Win10 or the safety of BL. -
Rysiekúr Memesson (rysiek@mastodon.social)'s status on Monday, 15-May-2017 09:57:37 UTC Rysiekúr Memesson Apart from ideological arguments (with which I largely agree), are there any concrete reasons/arguments to use #VeraCrypt full disk encryption for #Windows, rather than the integrated #BitLocker?