Microsoft Has Your Encryption Key If You Use Windows 10

I’m glad I don’t use Windows 10! A report published yesterday claims, “If you login to Windows 10 using your Microsoft account, your computer automatically uploads a copy of your recovery key to a Microsoft servers.” The recovery key can be used to unlock your encrypted disk. If true, this may be one of the biggest security breaches of the year.

The article byMicah Lee in The Intercept at https://goo.gl/8tNRCS claims:

“As soon as your recovery key leaves your computer, you have no way of knowing its fate. A hacker could have already hacked your Microsoft account and can make a copy of your recovery key before you have time to delete it. Or Microsoft itself could get hacked, or could have hired a rogue employee with access to user data. Or a law enforcement or spy agency could send Microsoft a request for all data in your account, which would legally compel them to hand over your recovery key, which they could do even if the first thing you do after setting up your computer is delete it.”

This security problem apparently only affects Windows 10 users who have enabled the encrypted disk option. Then again, if you are not using the encrypted disk option, you have other security holes in your system.

If you are using Windows 10 or are thinking about using it, make sure you read the article at https://goo.gl/8tNRCS.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s