Users can’t decrypt HDD anymore after Windows 10 Anniversary Update

Posted 17 August 2016 18:39 CEST by Jan Willem Aldershoff

The Windows 10 Anniversary update causes issues with encrypted HDDs for some users. After installing the update the HDD can no longer be decrypted and Windows 10 is asking users for a recovery key.

myce-bitlocker-recovery

The affected feature it Bitlocker, a feature that that exists since Windows Vista and adds full disk encryption. After users restart their computer when they’ve upgraded to Windows 10 Anniversary Update, Bitlocker reports it can’t decrypt the drive and asks for a recovery key. This key can be stored in a Microsoft account, in a file or printed on paper and is used to access the disk when normal access fails. Unfortunately entering the recovery key sometimes doesn’t work as well.

According to Microsoft the issue is caused by an incompatibility of the Windows Hyper-V (used to create Virtual Machines) and a possible issue with Device Guard which is an additional protection layer against malware in Windows 10.

Only users of Windows 10 Professional and Enterprise are affected as these are the only Windows 10 versions with Bitlocker and Hyper-V.

Microsoft is working on a fix which it hopes to release through Windows Update on the 23rd of August. Till then the company has posted several workarounds (bottom of page).



Xercus
Moderator
Posted on: 17 Aug 16 17:36
Well, that ought to teach them a lesson, one about not trusting MS for your system wide encryption. It has been hacked already and so if you are affected, search the net...
0 Agree

Mr. Belvedere
MyCE Resident
Posted on: 18 Aug 16 19:32
Hmmm. i bitlocked my drives after the anniversary update. Am i still affected?

Quote:
Originally Posted by Xercus
Well, that ought to teach them a lesson, one about not trusting MS for your system wide encryption. It has been hacked already and so if you are affected, search the net...
Que? Bitlocker has been cracked? That's news to me! Can i have a link?
0 Agree

Xercus
Moderator
Posted on: 18 Aug 16 19:44
Quote:
Originally Posted by Mr. Belvedere
Hmmm. i bitlocked my drives after the anniversary update. Am i still affected?


Que? Bitlocker has been cracked? That's news to me! Can i have a link?
No you should not be affected if you did it after to my knowledge.

Sure, Black Hat did that as early as back in 2010. While I can't find the link, there is a Microsoft 'downplay' of the attack here. The attack requires physical access to the box which would be within the realms of the article presented here. Search for 'Bitlocker hack' and you should get more info.
0 Agree

Mr. Belvedere
MyCE Resident
Posted on: 18 Aug 16 21:24
Quote:
Originally Posted by Xercus
No you should not be affected if you did it after to my knowledge.

Sure, Black Hat did that as early as back in 2010. While I can't find the link, there is a Microsoft 'downplay' of the attack here. The attack requires physical access to the box which would be within the realms of the article presented here. Search for 'Bitlocker hack' and you should get more info.
Oh with the TPM. Yeah i know that. I don't have TPM fortunately.
Don't like Bitlocker that much, but i'm forced to use it by the company.

I rather use VeraCrypt. Can't wait what the audit will find.
0 Agree

Xercus
Moderator
Posted on: 19 Aug 16 07:35
Quote:
Originally Posted by Mr. Belvedere
Oh with the TPM. Yeah i know that. I don't have TPM fortunately.
Don't like Bitlocker that much, but i'm forced to use it by the company.

I rather use VeraCrypt. Can't wait what the audit will find.
Since BitLocker uses TPM by default, it means you have a somewhat advanced setup.
VeraCrypt is a great cross platform open source choice built on the old TrueCrypt and comes with better encryption routines so is more secure than BitLocker.
In the context of encryption, how trustworthy the company is really gets interesting unless it is open source and so transparent

Given the information harvesting and privacy trespassing done by a vanilla Windows 10 express install, Microsoft have lost any credibility for encryption and no official statement from Microsoft can change that. Bitlocker must be seen as unsafe, period! What are the chances of the password being sent to Microsoft? They do harvest your other passwords unless you do something about it and so why wouldn't they?

In your case, unless policy denies, I would use VeraCrypt on top of BitLocker and create a few encrypted containers or hidden volumes... That way BitLocker is the simple disk encryptor with VeraCrypt providing additional security. In such usage scenario, BitLocker and VeraCrypt are compatible and should not cause compatibility issues.

BTW: I heard the audit should be done this fall, but have no further information on the subject and so yes, I am eagerly awaiting the results too
0 Agree

Mr. Belvedere
MyCE Resident
Posted on: 19 Aug 16 09:29
Quote:
Originally Posted by Xercus

Since BitLocker uses TPM by default, it means you have a somewhat advanced setup.
Err yeah. I think i can safely say that most of my IT equipment have very advanced setups. After working almost 25 years in IT you get to know some tricks

Quote:
In your case, unless policy denies
Let's say i could get in some trouble if i use too much of my own set of tools
0 Agree

Xercus
Moderator
Posted on: 19 Aug 16 10:26
Quote:
Originally Posted by Mr. Belvedere
Err yeah. I think i can safely say that most of my IT equipment have very advanced setups. After working almost 25 years in IT you get to know some tricks
Um, yes, the opposite result would really be the surprise I guess
0 Agree

TSJnachos117
MyCE Resident
Posted on: 20 Aug 16 15:36
To be frank, the fact that BitLocker has been cracked doesn't surprise me at all. Xercus said himself (or is it herself?) that BitLocker was introduced in Vista, so it's almost a decade old. Something that old is rarely secure in the digital age.

It seems to me that this is another reason why Microsoft should be embarrassed of themselves. I don't see things in the GNU/Linux world breaking nearly as often as I do in the Windows world (although I don't spend too much time with rolling distros), which means that the Microsoft employees must be either very stupid and/or too intoxicated to function.
0 Agree

Mr. Belvedere
MyCE Resident
Posted on: 03 Sep 16 18:32
Quote:
Originally Posted by TSJnachos117
To be frank, the fact that BitLocker has been cracked doesn't surprise me at all. Xercus said himself (or is it herself?) that BitLocker was introduced in Vista, so it's almost a decade old. Something that old is rarely secure in the digital age.
Bitlocker has been upgraded with better encryption methods the latest Windows 10 build. It even tells you so when you start encrypting your drive.
0 Agree

Reactions closed

Sorry, you can't comment on this item anymore. It's either too old or comments are disabled for this post.

Myce.com settings

Several settings at Myce.com can be changed, they are stored in cookies, which means they will be reset if you clear Myce.com cookies

Background

Change the background to a plain color or trianglified image (similar to the default image)

No tracking features

At Myce most social media feature are done server side and impose no privacy risk to the visitor when not used. Several features use Javascript with you can turn off here

Layout

Switch to the List layout for an index with chronologycally listed news items or Grid layout for a block based layout. To see the change you need to reload the page

×