A critical zero-day exploit named YellowKey has been published that completely bypasses default BitLocker encryption on Windows 11 systems. The attack requires physical access and exploits a custom FsTx folder to bypass the trusted platform module (TPM) protections within seconds. This poses a significant security risk as BitLocker is mandatory for many government contractors and organizations handling sensitive data.
Background
BitLocker is Microsoft's full-disk encryption feature that uses a TPM (Trusted Platform Module) to protect encryption keys. It's widely used in enterprise environments and government organizations to secure sensitive data on Windows devices.
- Source
- Ars Technica
- Published
- May 15, 2026 at 02:32 AM
- Score
- 9.0 / 10