Skip to main content
  1. Home
  2. Computing
  3. Legacy Archives

Researchers Defeat HDD Encryption

Add as a preferred source on Google

While properly encrypted hard drives were thought to offer a challenge to even the most talented of hackers, a recent breakthrough has proven that even this extreme security measure possesses major vulnerabilities. On Thursday, a group of Princeton researchers revealed a creative exploit that allows common hard drive encryption software to be easily bypassed in minutes by anyone who has physical access to the computer.

While most new hacks and security vulnerabilities rely on software loopholes, the Princeton researchers actually exploited a property of computer hardware to snag encryption keys.  Since most encryption programs require users to enter their passwords only once at boot, they store an encryption key in RAM to decode the hard drive’s encrypted contents on the fly. Most software companies would not consider this a vulnerability, since the contents of DRAM are wiped clean without electricity, making the key seemingly impossible to steal.

Recommended Videos

But the Princeton researchers found that DRAM holds its contents for much longer without electricity than most people suspected, and developed a way to extend its life even further by freezing it with the spray from an upside-down can of air duster. When presented with a running but locked computer, researchers were able to preserve the memory with air duster, swap it to a different laptop, pull the encryption keys right out and read the encrypted drives.

The team successfully cracked drives encoded by popular schemes including Microsoft Vista’s BitLocker and Mac OS X’s FileFault, along with dm-crypt and TrueCrypt. The only prospect for circumventing the Princeton attack procedure may be using an additional encryption string, which would be stored on a USB thumb drive or other removable media, and taken with the user when away from the laptop.

Nick Mokey
As Digital Trends’ Editor in Chief, Nick Mokey oversees an editorial team covering every gadget under the sun, along with…
A Windows 11 bug may be quietly eating hundreds of gigabytes of your storage
Windows 11’s storage-eating bug now has a fix from Microsoft
Windows 11 suffering from RAM crisis

If your Windows 11 PC suddenly looks low on storage, your downloads folder or game library may not be the problem. According to Windows Latest, a bug tied to a Windows system file can silently consume tens or even hundreds of gigabytes on the system drive.

The file in question is called CapabilityAccessManager.db-wal, and it sits inside Windows’ Capability Access Manager folder. Windows Latest says the issue may appear as unusually high “System files” usage in Windows 11’s storage breakdown, even though the Settings app does not clearly identify the exact file responsible. In some reported cases, users saw it grow to 200GB, and even more.

Read more
Your next Teams meeting could have an AI teammate that answers questions for you
Teams is getting smarter, cleaner, and quieter about it. The AI features are opt-in, the chat cleanup is automatic.
Computer, Electronics, Laptop

Microsoft Teams is getting a meaningful update that overhauls almost every part of how you use the app, from AI-assisted meetings to a cleaner chat layout. Most of the changes are already in testing, and several are scheduled to roll out before the end of the summer.

Starting with the most interesting addition: an upgraded AI Facilitator that can listen to your meeting, spot when someone seems confused, and generate a response (via Windows Report). 

Read more
A hacker’s arrest just revealed how Microsoft can track your Windows device
Microsoft knew what websites his Windows PC visited.
Windows 11 on a laptop

A teenager allegedly used a VPN to cover his tracks while hacking a US jewelry retailer, but Microsoft knew anyway.

Court documents unsealed in the US case against Peter Stokes, a 19-year-old dual US-Estonian citizen accused of being a member of the notorious Scattered Spider hacking group, reveal that Microsoft provided the FBI with records tied to a tracking mechanism called the Global Device Identifier, or GDID. 

Read more