Microsoft has announced measures to address the YellowKey vulnerability, a zero-day flaw in Windows BitLocker that allows unauthorized access to protected drives. The vulnerability was recently unveiled by a security researcher known as ‘Nightmare Eclipse,’ who also disclosed other security issues like BlueHammer and RedSun. This series of disclosures is reportedly in protest of Microsoft’s handling of previous security reports. To counteract potential YellowKey exploits, Microsoft advises removing certain entries from the system’s registry and adjusting BitLocker settings to require a PIN at startup. These steps aim to protect systems until a formal security update is released.
How is Microsoft addressing the YellowKey Windows vulnerability?
