News Grower

Independent coverage of AI, startups, and technology.

Language English Russian
Ars Technica May 14, 2026 at 18:32 Big Tech Stable Warm

Zero-day exploit completely defeats default Windows 11 BitLocker protections

It's not entirely clear how the exploit works. Microsoft says it's investigating.

Signal weather

Stable

The story has moved beyond the first headline and now acts as a reliable context anchor.

By Dan Goodin Original source
Zero-day exploit completely defeats default Windows 11 BitLocker protections

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker protections and gain complete access to an encrypted drive within seconds. The exploit, named YellowKey, was published earlier this week by a researcher who goes by the alias Nightmare-Eclipse. It reliably bypasses default Windows 11 deployments of BitLocker, the full-volume encryption protection Microsoft provides to make disk contents off-limits to anyone without the decryption key, which is stored in a secured piece of hardware known as a trusted platform module (TPM). BitLocker is a mandatory protection for many organizations, including those that contract with governments. When one disk volume manipulates another The core of the YellowKey exploit is a custom-made FsTx folder. Online documentation of this folder is hard to find. As explained later, the directory associated with the file fstx.dll appears to involve what Microsoft calls the transactional NTFS, which allows developers to have “transactional atomicity" for file operations in transactions with a single file, multiple files, or ones that span multiple sources. Read full article Comments

Read the full article

Stay on the signal

Follow Zero-day exploit completely defeats default Windows 11 BitLocker protections

Follow this story beyond a single article: new follow-ups, adjacent sources, and the evolving storyline.

We send a confirmation link first, then only meaningful digests.

Story map

Understand this topic fast

A quick entry into the story: why it matters now, who is involved, and where to go next for context.

Why it matters now

This story is still moving and pulling follow-up coverage.
There are already 6 connected articles in the same storyline to continue from here.
The story keeps orbiting around Ars Technica, BitLocker, and Bitlocker Protections, so the entity pages are the fastest way to build context.
Ars Technica already has 4 follow-up stories on the same theme.

Topic constellation

Open the live map for this story

See which entities, story threads, sources, and follow-up articles shape this story right now.

Click nodes to continue

Entity Cluster Article Hub Source

Entity pages

Ars Technica BitLocker Bitlocker Protections Completely Defeats Exploit Investigating

Story threads

Ars Technica

Latest coverage and related links about Ars Technica.

Ars Technica

Последние материалы и связанный контекст по теме Ars Technica.

BitLocker

Последние материалы и связанный контекст по теме BitLocker.

BitLocker

Latest coverage and related links about BitLocker.

Story timeline

Continue with this story

A short sequence of events and follow-up stories to understand the arc quickly.

Jun 29, 2026 at 20:04 Ars Technica

Supreme Court ruling guts government’s use of geofence warrants

SCOTUS falls short of deeming geofence warrants unconstitutional, though.
Jun 29, 2026 at 19:10 Ars Technica

Sony erases digital content from libraries; we're reminded we don’t own what we buy

Sony has been scaling down its digitial store for a few years.
Jun 29, 2026 at 19:00 Ars Technica

Ozone loss was a thing even before CFCs were widely used

With today’s scientific tools, the problem could have been spotted in the 1950s.
Jun 29, 2026 at 18:21 Ars Technica

Google warns EU's plans to weaken its monopoly could expose user data

The EU wants Google to share search data with competitors and open up AI on Android, but Google alleges major privacy risks.
Jun 29, 2026 at 17:59 Ars Technica

Quantum computing startup says it will leapfrog everybody

But the system would require a massive leap from any of its existing hardware.
May 14, 2026 at 18:32 Ars Technica

Zero-day exploit completely defeats default Windows 11 BitLocker protections

It's not entirely clear how the exploit works. Microsoft says it's investigating.

How reliable this looks

Signal and trust for Ars Technica

This source works at a rapid pace: 100% of recent stories land in the hot window, and 0% carry visible search signal.

Trusted

Reliability

92

Freshness

100

Sources in storyline

1

Related articles

More stories that share tags, source, or category context.

More from Ars Technica

Fresh reporting and follow-up coverage from the same newsroom.

Open source page