Post · bonfire.cafe

Post

"Microsoft said it receives around 20 requests for BitLocker keys a year and will provide them to governments in response to valid court orders"

This should not have been technically possible in the first place... But that's Microsoft, you know...

https://www.forbes.com/sites/thomasbrewster/2026/01/22/microsoft-gave-fbi-keys-to-unlock-bitlocker-encrypted-data/

🔩 Adam Štrauch

@bycx@mastodonczech.cz replied · 2 weeks ago

@Xeniax It should have not but they offer to store the keys "safely" in their cloud 🙂

ElectroFetish

@ElectroFetish@mastodon.social replied · 2 weeks ago

@Xeniax This procedure is akin to covering up those who actually commit crimes.
And ordinary citizens suffer as a result.

Kevin Karhan :verified:

@kkarhan@infosec.space replied · 2 weeks ago

@Xeniax OFC #CensorBoot never was about #Security and #Microsoft having #Govware - #Backdoors in their #CryptoAPI is nothing new.

Just glad to have them admit publicly that they don't give a fuck about #Windows #security or #orivacy!

If this doesn't disqualify Windows & Microsoft in general then those who made that decision should be fired.

Simply because there's no legitimate reason for them to have this kind of #Backdoor!

The only secure #encryption is #FLOSS with #SelfCustody of all the keys…

And Windows is just #malware…

#USpol #cyherfascism #CloudAct #GAFAMs

Twitter

thaddeus e. grugq on Twitter

“I’m gonna tell you a secret about “logless VPNs” — they don’t exist. Noone is going to risk jail for your $5/mo https://t.co/Q2aOQJkG4g”

GitHub

GitHub - kkarhan/windows-ca-backdoor-fix: Fixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefaehrden-SSL-Verschluesselung-2317589.html

Fixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefae...

xeniax ⏚

@Xeniax@mastodon.ml replied · 2 weeks ago

@kkarhan 1000% agree

helly ✅

@fluttersh@pony.social replied · 2 weeks ago

@Xeniax they used to store the encryption key in the registry https://sawyerfam06.blogspot.com/2008/09/bitlocker-registry-keys.html idk where they are now though

BitLocker Registry Keys

I wrote a UI that enables me to easily manage all of my BitLocker encrypted drives. Even with Windows Vista SP-1 (or Server 2008), which has...

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.2-alpha.7 no JS en

Automatic federation enabled