← Back to context

Comment by Dylan16807

6 hours ago

> If the device doesn't have BitLocker, this exploit is pointless because you can already boot any OS USB

For this hypothetical, assume the owner took basic precautions to lock booting to the hard drive and password protect the BIOS.

But I'm not 100% familiar with how recovery mode normally works, so maybe it doesn't matter.

> To avoid typing 1)2)3)4) a bunch of more times, I'll just say 2/3/4) all still fit the definition of downplaying the situation.

I think that level of pushback against the claims is a valid (and small) amount of "downplaying". I haven't seen anyone claiming this isn't a serious issue.

1 comment

Dylan16807

Reply
iscoelho  6 hours ago

If the device does not have BitLocker, WinRE already by default provides full Administrator access to the unencrypted disk via Command Prompt.

> I think that level of pushback against the claims is a valid (and small) amount of "downplaying". I haven't seen anyone claiming this isn't a serious issue.

If you look in the other threads about this, it's much more obvious. Look for brand new users. There's comparatively few in this thread, but the pattern is there: if the user's name is green, they're downplaying this.