SecurityWeek

Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass

Microsoft has announced mitigations for CVE-2026-45585, a BitLocker bypass triggered via FsTx in Windows Recovery.
Morning Overview on MSN

Microsoft just rushed out a fix for 'YellowKey' — a Windows flaw that lets attackers pop open BitLocker-encrypted drives and read what's inside

Microsoft has confirmed a vulnerability in Windows Recovery Environment that can let an attacker with physical access bypass ...

Windows BitLocker exploit sparks messy feud between Microsoft and the researcher who exposed it

The issue centers on a zero-day exploit called "YellowKey," published earlier this month by a security researcher known as Chaotic Eclipse, also known online as Nightmare-Eclipse.

Microsoft Exchange hacked, Defender broken, BitLocker bypassed

Microsoft's May Patch Tuesday looked quiet. Since then, there's been an unpatched Exchange CVE, three Defender flaws, and a ...

Microsoft Warns: Windows Zero-Day ‘YellowKey’ Can Bypass BitLocker

Microsoft has released a temporary mitigation for YellowKey, a Windows zero-day that can reportedly bypass BitLocker ...

Microsoft Mitigates Dangerous YellowKey Tool That Breaks BitLocker

Microsoft has a potential workaround for the recent YellowKey BitLocker exploit, but hasn't readied a patch just yet.
Bleeping Computer

Microsoft: October Windows updates trigger BitLocker recovery

Microsoft has warned that some systems may boot into BitLocker recovery after installing the October 2025 Windows security updates. BitLocker is a Windows security feature that encrypts storage drives ...