Microsoft gave FBI set of BitLocker encryption keys to unlock suspects' laptops
2 months ago
- #FBI
- #BitLocker
- #Microsoft
- Microsoft provided FBI with BitLocker recovery keys for three laptops in a federal fraud investigation.
- BitLocker, enabled by default on many Windows computers, uploads recovery keys to Microsoft's cloud.
- This allows Microsoft and law enforcement to decrypt drives when legally requested.
- The case involved suspects of fraud in Guam's Pandemic Unemployment Assistance program.
- Microsoft receives about 20 requests per year for BitLocker recovery keys from authorities.
- Cryptography expert Matthew Green warns of risks if hackers access Microsoft's cloud-stored recovery keys.
- Hackers would still need physical access to the hard drives to use stolen recovery keys.
- Green criticizes Microsoft's security practices regarding customer keys as being behind industry standards.