Privacy Blog

"Friends don’t let friends get spied on.' – Richard Stallman, President of the Free Software Foundation and longtime advocate of privacy in technology.

Microsoft Has Your Encryption Key If You Use Windows 10

I’m glad I don’t use Windows 10! A report published yesterday claims, “If you login to Windows 10 using your Microsoft account, your computer automatically uploads a copy of your recovery key to a Microsoft servers.” The recovery key can be used to unlock your encrypted disk. If true, this may be one of the biggest security breaches of the year.

The article byMicah Lee in The Intercept at claims:

“As soon as your recovery key leaves your computer, you have no way of knowing its fate. A hacker could have already hacked your Microsoft account and can make a copy of your recovery key before you have time to delete it. Or Microsoft itself could get hacked, or could have hired a rogue employee with access to user data. Or a law enforcement or spy agency could send Microsoft a request for all data in your account, which would legally compel them to hand over your recovery key, which they could do even if the first thing you do after setting up your computer is delete it.”

This security problem apparently only affects Windows 10 users who have enabled the encrypted disk option. Then again, if you are not using the encrypted disk option, you have other security holes in your system.

If you are using Windows 10 or are thinking about using it, make sure you read the article at

Categories: Encryption

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.