BitLocker

Free Decryptor Released for BitLocker-Based ShrinkLocker Ransomware Victims

by

November 13, 2024 at 09:46AM Bitdefender has launched a free decryptor for ShrinkLocker ransomware, allowing data recovery following an analysis of the malware’s operations. The ransomware uses BitLocker for encryption and exploits trusted relationships to infiltrate systems. Recommendations for organizations include proactive monitoring and configuring BitLocker policies to mitigate risks. ### Meeting Takeaways 1. **Bitdefender’s … Read more

Microsoft disables BitLocker security fix, advises manual mitigation

by

August 15, 2024 at 11:34AM Microsoft disabled a BitLocker vulnerability fix due to firmware incompatibility, causing devices to enter recovery mode. The CVE-2024-38058 flaw allows attackers to bypass BitLocker encryption and access data. To mitigate the issue, users must follow a complex 4-stage process and may face limitations. Microsoft didn’t address the root cause, urging … Read more

Windows 10 KB5041580 update released with 14 fixes, security updates

by

August 13, 2024 at 01:23PM Microsoft has launched the KB5041580 cumulative update for Windows 10 22H2 and 21H2, incorporating 14 changes and fixes, notably addressing BitLocker issues and providing critical security updates. It looks like you have provided the meeting notes about the release of the KB5041580 cumulative update for Windows 10 22H2 and Windows … Read more

New ShrinkLocker ransomware uses BitLocker to encrypt your files

by

May 24, 2024 at 11:01AM ShrinkLocker is a new ransomware strain that utilizes Windows BitLocker to encrypt systems by creating new boot volumes. It employs previously unreported features to maximize the attack’s damage and targets specific Windows versions. The malware modifies registry entries and denies recovery options, indicating a destructive intent rather than financial gain. … Read more

Here’s yet more ransomware using BitLocker against Microsoft’s own users

by

May 23, 2024 at 05:34PM Ransomware dubbed ShrinkLocker, utilizing Microsoft BitLocker to encrypt and extort payments, has been spotted by Kaspersky’s security team. The malware targets various sectors and hinders effective response, maximizing damage. It uses VBScript to determine the OS and allows attackers to change partition labels, extort victims, and delete recovery options. Kaspersky … Read more

Microsoft fixes bug behind incorrect BitLocker encryption errors

by

April 29, 2024 at 11:12AM Microsoft has resolved a known issue causing incorrect BitLocker encryption errors in managed Windows environments, affecting Intune and third-party MDM solutions. The bug, impacting specific policy settings, is now fixed for Windows 11, Windows 10, and the company’s released updates. However, it won’t fix the bug for Windows 10 Enterprise … Read more

Raspberry Pi Pico cracks BitLocker in under a minute

by

February 7, 2024 at 10:40AM A recent YouTube video demonstrated how a Raspberry Pi Pico can exploit a vulnerability to access a BitLocker-secured device in under a minute. The technique involves intercepting the unencrypted key passed between the TPM and CPU, using affordable components. While Microsoft acknowledges such attacks, mitigations can be implemented through the … Read more

Microsoft: October Windows 10 security updates fail to install

by

October 13, 2023 at 04:02PM Microsoft has acknowledged an issue where Windows 10 security updates, specifically the KB5031356 security update, may fail to install with 0x8007000d errors. Reports of this problem have been surfacing since October 10. Microsoft is currently investigating the root cause of the issue and encourages affected users to file a report … Read more

Microsoft warns of incorrect BitLocker encryption errors

by

October 10, 2023 at 05:55PM Microsoft has issued a warning to customers about incorrect BitLocker drive encryption errors in certain managed Windows environments. The issue only affects client platforms like Windows 11 21H2/22H2 and Windows 10 21H2/22H2, as well as Windows 10 Enterprise LTSC 2019. It specifically impacts environments where drive encryption is enforced for … Read more