Security Researcher Reveals Vulnerability in Windows BitLocker Allowing Unauthorized Access
A security researcher, known by the aliases 'Nightmare-Eclipse' and 'Chaotic Eclipse', has disclosed a vulnerability in Microsoft's BitLocker disk encryption technology. The exploit, named YellowKey, allows unauthorized access to encrypted drives on Windows 11 and Windows Server 2022/2025 using a USB stick with specially crafted files. The vulnerability requires physical access to the target computer and involves using a feature called Transactional NTFS to bypass security measures. The researcher also hinted at another vulnerability, GreenPlasma, which could escalate privileges on Windows systems. The disclosure follows previous exploits by the same researcher, who criticized Microsoft's handling of security issues. 
