A new security flaw has been found in Windows 10, although it is only a minor issue. According to security researcher Sami Laiho, Windows 10 is giving unauthorized users the ability to bypass BitLocker. As a result, when upgrading in the Windows Preinstallation Environment these users can access the hard disk.
This access is easily achieved by pressing SHIFT + F10, which in turn opens Command Prompt. When an update is installing, they can access the hard disk without having to do anything else. This was described by Sami, who then demonstrated it in a video (below).
In the description, Sami points out that the flaw is found in Windows 10 Version 1511 and 1607. These are the last two major feature updates known as the November Update and the Anniversary Update. Interestingly, the bug is also affecting the latest Windows Insider releases.
Microsoft says it is working on a patch that will fix this security lapse. The company has not said when the situation will be resolved, but we imagine an update will roll out soon.
The good news is this bug is nothing too problematic. That means it is not a potent threat as any attacker would need a physical access point to a system to be able to take advantage of the flaw.
EMET Discontinuation
While this Windows 10 bug is nothing to be too worried about, researchers are concerned with Microsoft’s EMET toolkit. More specifically, experts do not want to see the company retire the security features.
Microsoft has said it will do just that in July 2018. However, the computer emergency response team at Carnegie Mellon University wants Microsoft to reconsider. The group argues that the effectiveness of EMET is well-known and it remains a potent tool for combatting security flaws.
The company disagrees and says EMET is not as protective as the company’s built-in solutions for Windows 10.
A spokesperson for the company says “[EMET’s] effectiveness against modern exploit kits has not been demonstrated, especially in comparison to the many security innovations built-in to Windows 10.”
