Scoop has an Ethical Paywall
Kiwi Hacker Unlocks Microsoft's BitLocker
New Zealand security expert Denis Andzakovic has
released a tool that steals the encryption keys for drives
encrypted with Microsoft's BitLocker encryption.
Users who use BitLocker with the default settings, and do not use pre-boot authentication are vulnerable to this attack.
Andzakovic, a Principal Security Consultant at New Zealand infosec firm Pulse Security says, "An attacker can perform this attack with a $40 tool purchased from DigiKey and physical access to the device".
The issue was reported by Andzakovic to Microsoft's Security Response Centre (MSRC). MSRC is quoted with saying "BitLocker documents that this attack is not in scope for the default configuration. BitLocker recommends that if customers care about this level of attack, that they use Pre-boot authentication."
"Most users tend to stick with default configurations, which this attack applies to." says Andzakovic
Users concerned about this attack are advised to enable pre-boot authentication, such as a PIN code, USB key or smart card.
Stats NZ: Economic Impacts On New Zealand From Conflict In The Middle East – Report
Advertising Standards Authority: ASA Annual Report 2025 - Platform-Neutral Regulation Keeps Pace With Digital Advertising
Science Media Centre: Lead Pipes Banned For New Plumbing – Expert Reaction
New Zealand Young Physicists Trust: Auckland To Host The ‘World Cup Of Physics’ In 2027; Search Begins For Student-Designed Tournament Logo
Oxfam Aotearoa: Top CEO Pay Increased 20 Times Faster Than Workers’ Pay In 2025
Bill Bennett: TUANZ Report - Networks Built, Value Missing
