Microsoft has announced mitigations for CVE-2026-45585, a BitLocker bypass triggered via FsTx in Windows Recovery.

Microsoft broke from its regular monthly patch schedule in late May 2026 to push an emergency fix for a vulnerability that ...

The issue centers on a zero-day exploit called "YellowKey," published earlier this month by a security researcher known as Chaotic Eclipse, also known online as Nightmare-Eclipse.

I always take my laptop with me when I travel, which means I'll inevitably have to leave it unattended in the hotel room or airport security line. To ensure my personal data is protected if my PC is ...

A cybersecurity researcher has published proof-of-concept (PoC) exploits for two unpatched Microsoft Windows vulnerabilities named YellowKey and GreenPlasma, which are a BitLocker bypass and a ...

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker ...

The IT researcher behind the "NightmareEclipse" project shows new vulnerabilities: "YellowKey" in BitLocker and privilege escalation with "MiniPlasma".

BitLocker is intended to protect confidential data from physical attacks. The Windows Recovery Environment bypasses the protection.

Microsoft has confirmed a vulnerability in Windows Recovery Environment that can let an attacker with physical access bypass ...

Microsoft rushes to mitigate the new “YellowKey” flaw that may bypass BitLocker protections and expose encrypted Windows ...

A zero-day vulnerability called ' YellowKey,' which could potentially bypass Microsoft's BitLocker-encrypted drives, has been disclosed by security researcher Nightmare-Eclipse. Alongside this, ...

YellowKey, GreenPlasma, and MiniPlasma add to growing list of vulns a security researcher has disclosed over the past 6 weeks ...