https://twitter.com/XMPPwocky/status/1420527243172868097
Security is a never ending story...
https://dolosgroup.io/blog/2021/7/9/from-stolen-laptop-to-inside-the-company-network
#tpm #vpn #physicalAccessMeansYouArePowned
it took me forever to believe a coworker who told me that keys just go across the bus to the TPM in plaintext
— advanced persistent treat (@XMPPwocky) July 28, 2021
"well, no, that can't be right, the whole bitlocker threat model is designed around an attacker with physical access, they wouldn't just" yup they totally do https://t.co/lyZ5pUGi5C
One person like that