Der IT-Forscher hinter dem „NightmareEclipse“-Projekt zeigt neue Lücken: „YellowKey“ in BitLocker und Rechteausweitung mit „MiniPlasma“.

It’s nasty, but it requires physical access to the computer: The exploit, named YellowKey, was published earlier this week by a researcher who goes by the alias Nightmare-Eclipse.…

Der IT-Forscher hinter dem „NightmareEclipse“-Projekt zeigt neue Lücken: „YellowKey“ in BitLocker und Rechteausweitung mit „MiniPlasma“.

The IT researcher behind the "NightmareEclipse" project shows new vulnerabilities: "YellowKey" in BitLocker and privilege escalation with "MiniPlasma".

Exploitation requires physical access, so enterprises should look to their device security policies.

Microsoft has shared mitigations for YellowKey, a recently disclosed Windows BitLocker zero-day vulnerability that grants access to protected drives.