People called me paranoid when I said this would happen someday…
Isn’t this against the fourth admement or something?
Why is anyone surprised by this? And what kind of imbecile commits crimes and uses windows? 🤣
Well, since you don’t actually enter a password to decrypt a bitlocker device, you can intercept the key data with physical connectors to the TPM
Bitlocker just makes it slightly more tedious to retrieve data. As long as you have all other components intact aswell.
What does Microsoft think the fucking point of encryption is? Do they think I am encrypting my data to protect it from my dog?
If you’re not the only one with the keys, is it really encrypted?
As someone who used windows for way too long: they just simply don’t give a shit. Like at all
deleted by creator
Amazing how every time you think they’ve finally stopped digging… they whip out the steam shovel and go “Hey y’all, watch this!”
Microslop’s OS is evidently untrustworthy and should not be used. I would recommend replacing it with a Linux distribution.
all of the disadvantages of FDE with none of the advantages.
not that this wasnt expected, wtf do yall think it was uploaded to onedrive in the first place lol
Is anyone shocked by this? With everything that DHS, FBI, ICE, military, elected representatives, etc. are all doing without any concern or care for laws, civil rights, human rights, the Constitution, this should not be a shock to anyone. Corporations are bending over backwards to appease the talking orange and make more money. They do not care as long as profits are up and the shareholders are happy. A companies primary legal responsibility is to the shareholders, not the customers.
+100. People forget, or chose not to pay attention to the fact that Google sensor vault data was key evidence in convicting the January 6 insurrectionists (who were exonerated to become ICE). Surveillance capitalism doesn’t care which side you are on.
Small correction. They were not exonerated. They were pardoned. A pardon implicitly means guilt. Exonerated means their conviction was overturned.
Agreed. Wrong word choice. And its an important, major correction. Not a small one. :-)
Well, storing the key in the specific provider‘s cloud isn‘t a good idea anyway - the same counts for iCloud as well. There are things that should be separated from each other because of reasons, this one is just another proof for the need to do so.
Federal investigators in Guam believed the devices held evidence that would help prove individuals handling the island’s Covid unemployment assistance program were part of a plot to steal funds.
Damn, they weren’t even doing this to go after pedos.
I’m curious where in the economic ladder this person fell. Rich enough to get a significant amount of money from the system, but still too poor to make the government look the other way.
Not your keys ? Not your data !
Regular old ZIP with AES-256 should do the trick for anything truly important you want to keep locked down.
You could always do sly stuff like Hidden volumes with Veracrypt as well. Leave the crumb trail for the low key shit or old nudes of gfs you have permission to keep.
Or don’t use an operating system that uploads your encryption keys to their corporate servers for “backup”.
Or decline the upload recommendation.
There is no recommendation that a user can decline. Windows uploads the keys without asking, without consent.
Daily reminder that verified boot is objectively superior to “secure boot”, once again a common Linux W and another example of Google actually promoting some good security practices
Same thing?
You can add custom keys to secure boot.
That doesn’t make it the same thing
Both are different names for a process that ensures the boot process is loading the correct non-malicious code.
Wasn’t this by design? Otherwise why keeping the decryption keys on servers located in the united states’?
It’s a consequence of the design.
I certainly wouldn’t want end users calling me because they lost their recovery keys and consequently all their data. So I can understand offering or even recommending fallbacks.
The real solution would be clear and obvious documented choice for an informed decision. Online backup for fallback but meaning possibility of court order compromise and other external management risks, or self-managed with no recovery in case of loss.
Indeed. I think that you have to remember that the vast majority of BitLocker users would go from no encryption to encryption with your key in the Cloud. Given the he risk of complete data loss this is imo a decent risk/reward in most cases. You need both the physical computer and the MS account login, and the US government also has the latter.
If you want to make an active and informed decision there is of course much better option s, but know that you would be responsible to keep the unlock key safe or risk total data loss.
