#tpm
"a more interesting question is whether the redmond mafia will force Backdoors11 onto computers running older Backdoors like they did with Backdoors10" http://techrights.org/irc-archives/irc-log-techbytes-280821.html#tAug%2028%2012:59:29 #microsoft #windows #vista11 #tpm
#vista11 is just a variant. It is a variant of a virus called #vista10 and with #tpm being mandatory it's even more lethal. #microsoft #windows
https://twitter.com/XMPPwocky/status/1420527243172868097
Security is a never ending story...
https://dolosgroup.io/blog/2021/7/9/from-stolen-laptop-to-inside-the-company-network
#tpm #vpn #physicalAccessMeansYouArePowned
it took me forever to believe a coworker who told me that keys just go across the bus to the TPM in plaintext
— advanced persistent treat (@XMPPwocky) July 28, 2021
"well, no, that can't be right, the whole bitlocker threat model is designed around an attacker with physical access, they wouldn't just" yup they totally do https://t.co/lyZ5pUGi5C
#ThisWeekInSecurity: #Fail2RCE, #TPM #Sniffing, #Fishy #Leaks, and #Decompiling
Fail2ban is a great tool for dynamically blocking IP addresses that show bad behavior, like making repeated login attempts. It was just announced that a vulnerability could allow an attacker to tak…
https://hackaday.com/2021/07/30/this-week-in-security-fail2rce-tpm-sniffing-fishy-leaks-and-decompiling/ #ThisWeekInSecurity
#TPM secured #BitLocker is easy to hack from a stolen Laptop...
Source: https://dolosgroup.io/blog/2021/7/9/from-stolen-laptop-to-inside-the-company-network
After days of troubleshooting, comparing captures, and pulling hair, we finally figured out it was a combination of different bit masks for the TPM command packets as well as a different regex for finding the key. We made a pull request for the fix and now the bitlocker-spi-toolkit can parse these types of requests as well. Once we had that, lo and behold, the key popped out.
Perfect, now that we have the decryption key, let’s decrypt the SSD and see what we have.
iophk: "I'm suspecting that #Vista11 has no other purpose than to push TPM hardware and eliminate all Free, general-purpose motherboards. Once the #TPM modules are ubiquitous they can start the software side..." #microsoft #criminals #monopoly
Do you #trust your #TPM chip?
What it is: https://en.wikipedia.org/wiki/Trusted_Platform_Module
How #Microsoft uses it: https://docs.microsoft.com/en-us/windows/security/information-protection/tpm/trusted-platform-module-overview
What really happens shows a video more than 10 years old: https://www.youtube.com/watch?v=XgFbqSYdNK4