Crucial and Samsung SSDs encryption can be bypassed when using Microsoft's Bitlocker

Questions on how we spend our money and our time - consumer goods and services, home and vehicle, leisure and recreational activities
Post Reply
donfairplay
Posts: 146
Joined: Mon Oct 06, 2008 8:16 pm

Crucial and Samsung SSDs encryption can be bypassed when using Microsoft's Bitlocker

Post by donfairplay » Tue Nov 06, 2018 12:43 am

In today's security theater news, apparently many models of Crucial and Samsung SSDs have encryption with very easy to exploit flaws. Microsoft's Bitlocker uses the SSD's encryption instead of bitlocker's own encryption. Bitlocker won't warn you if the SSD's encryption is weak.

Possibly unfixable (unless you really like doing firmware updates). Probably not *totally* Microsoft's fault in the end.

https://www.tomshardware.com/news/cruci ... 38025.html

The seucirty researchers noted these models: Crucial’s MX100, MX200 and MX300 SSDs, Samsung’s T3 and T5 portable SSDs and the popular Samsung 840 EVO and 850 EVO SSDs.


jebmke
Posts: 8470
Joined: Thu Apr 05, 2007 2:44 pm

Re: Crucial and Samsung SSDs encryption can be bypassed when using Microsoft's Bitlocker

Post by jebmke » Wed Nov 07, 2018 8:21 am

PFInterest wrote:
Wed Nov 07, 2018 8:14 am
meh.

this is way more exciting/terrifying: https://arstechnica.com/information-tec ... a-telecom/
I don't think that is what they meant by net neutrality.
When you discover that you are riding a dead horse, the best strategy is to dismount.

Post Reply